Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0832
SQL injection vulnerability in items.php in the E-Cart module 1.3 for PHP-Fusion allows remote malicious users to execute arbitrary SQL commands via the CA parameter.
Ausimods E-cart 1.3
1 EDB exploit
NA
CVE-2006-5016
Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote malicious users to upload arbitrary files to the /imagebank directory.
E-vision E-vision Cms 1.0
1 EDB exploit
NA
CVE-2008-1639
SQL injection vulnerability in index.php in Neat weblog 0.2 allows remote malicious users to execute arbitrary SQL commands via the articleId parameter in a show action, probably related to the showArticle function in lib/lib_article.include.php.
Neat Web Neat-web 0.2
1 EDB exploit
NA
CVE-2008-1650
SQL injection vulnerability in dynamicpages/index.php in EasyNews 4.0 allows remote malicious users to execute arbitrary SQL commands via the read parameter in an edp_Help_Internal_News action.
Myiosoft Easynews 4.0tr
1 EDB exploit
NA
CVE-2008-4080
SQL injection vulnerability in Stash 1.0.3, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the (1) username parameter to admin/library/authenticate.php and the (2) download parameter to downloadmp3.php. NOTE: some of these d...
Stash Stash 1.0.3
1 EDB exploit
NA
CVE-2008-2072
Cross-site scripting (XSS) vulnerability in index.php in Virtual Design Studio vlbook 1.21 allows remote malicious users to inject arbitrary web script or HTML via the l parameter, a different vector than CVE-2006-3260.
Virtual Design Studios Vlbook 1.21
1 EDB exploit
NA
CVE-2008-2081
Directory traversal vulnerability in index.php in Siteman 2.0.x2 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
Siteman Siteman 2.0
1 EDB exploit
NA
CVE-2008-1176
Cross-site scripting (XSS) vulnerability in function/sideblock.php in Affiliate Market (affmarket) 0.1 BETA allows remote malicious users to inject arbitrary web script or HTML via the sideblock4 parameter.
Affiliate Market Affiliate Market 0.1 Beta
1 EDB exploit
NA
CVE-2007-6124
Cross-site scripting (XSS) vulnerability in signin.php in Softbiz Freelancers Script 1 allows remote malicious users to inject arbitrary web script or HTML via the errmsg parameter.
Softbiz Freelancers Script 1.0
1 EDB exploit
NA
CVE-2008-6926
Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the scriptpath_show parameter in a GoAhead action....
Netenberg Fantastico De Luxe
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »