Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nukedx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1000
Multiple SQL injection vulnerabilities in Pentacle In-Out Board 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands and bypass authentication via the (1) newsid parameter to newsdetailsview.asp and (2) password parameter to login.asp.
G2soft Pentacle In-out Board 6.03
1 EDB exploit
NA
CVE-2006-1353
Multiple SQL injection vulnerabilities in ASPPortal 3.1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the downloadid parameter in download_click.asp and (2) content_ID parameter in news/News_Item.asp; authenticated administrators c...
Aspportal Aspportal 3.0.0
Aspportal Aspportal 3.1.0
Aspportal Aspportal 3.1.1
1 EDB exploit
NA
CVE-2006-2725
SQL injection vulnerability in rss/posts.php in Eggblog prior to 3.07 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Epic Designs Eggblog
1 EDB exploit
NA
CVE-2006-1333
Multiple SQL injection vulnerabilities in BetaParticle Blog 6.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to template_permalink.asp or (2) fldGalleryID parameter to template_gallery_detail.asp.
Betaparticle Betaparticle Blog 5.0
Betaparticle Betaparticle Blog 4.0
Betaparticle Betaparticle Blog 3.0
Betaparticle Betaparticle Blog 6.0
1 EDB exploit
NA
CVE-2006-6177
SQL injection vulnerability in system/core/users/users.profile.inc.php in Neocrome Seditio 1.10 and previous versions allows remote authenticated users to execute arbitrary SQL commands via a double-url-encoded id parameter to users.php that begins with a valid filename, as demon...
Neocrome Seditio
1 EDB exploit
NA
CVE-2006-2032
Multiple SQL injection vulnerabilities in Core CoreNews 2.0.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) icon_id and (2) userid parameters in preview.php.
Corenews Corenews
1 EDB exploit
NA
CVE-2006-2005
Eval injection vulnerability in index.php in ClanSys 1.1 allows remote malicious users to execute arbitrary PHP code via PHP code in the page parameter, as demonstrated by using an "include" statement that is injected into the eval statement. NOTE: this issue has been d...
Clansys Clansys 1.1
1 EDB exploit
NA
CVE-2006-1994
PHP remote file inclusion vulnerability in dForum 1.5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the DFORUM_PATH parameter to (1) about.php, (2) admin.php, (3) anmelden.php, (4) losethread.php, (5) config.php, (6) delpost.php, (...
Dforum Dforum 1.5
1 EDB exploit
NA
CVE-2006-2028
Cross-site scripting (XSS) vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal.
Simplog Simplog
1 EDB exploit
NA
CVE-2006-2002
PHP remote file inclusion vulnerability in stats.php in MyGamingLadder 7.0 allows remote malicious users to execute arbitrary PHP code via a URL in the dir[base] parameter.
Mygamingladder Mygamingladder 7.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »