Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s.w.a.t. vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4709
SQL injection vulnerability in news_read.php in Pilot Group (PG) eTraining allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Pilot Group Etraining
1 EDB exploit
NA
CVE-2008-0501
Directory traversal vulnerability in phpMyClub 0.0.1 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page_courante parameter to the top-level URI.
Sourceforge Phpmyclub 0.0.1
1 EDB exploit
NA
CVE-2007-6133
PHP remote file inclusion vulnerability in admin/kfm/initialise.php in DevMass Shopping Cart 1.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the kfm_base_path parameter.
Devmass Devmass Cart 1.0
1 EDB exploit
NA
CVE-2008-7301
SQL injection vulnerability in admin/login.php in jSite 1.0 OE allows remote malicious users to execute arbitrary SQL commands via the username parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sclek Jsite 1.0
1 EDB exploit
NA
CVE-2008-3749
SQL injection vulnerability in tr.php in YourFreeWorld Banner Management Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Banner Management Script
1 EDB exploit
NA
CVE-2008-6751
Unrestricted file upload vulnerability in index.php in the Twitter Clone (TClone) plugin for ReVou Micro Blogging allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in settin...
Revou Tclone
1 EDB exploit
NA
CVE-2007-5800
Multiple PHP remote file inclusion vulnerabilities in the BackUpWordPress 0.4.2b and previous versions plugin for WordPress allow remote malicious users to execute arbitrary PHP code via a URL in the bkpwp_plugin_path parameter to (1) plugins/BackUp/Archive.php; and (2) Predicate...
Tom Willmot Backupwordpress Plugin
1 EDB exploit
NA
CVE-2007-6137
SQL injection vulnerability in news.php in Content Injector 1.52 allows remote malicious users to execute arbitrary SQL commands via the cat parameter to index.php. NOTE: some of these details are obtained from third party information.
P3mbo Content Injector 1.52
1 EDB exploit
NA
CVE-2008-3321
admin/index.php in Maian Uploader 4.0 and previous versions allows remote malicious users to bypass authentication and gain administrative access by sending an arbitrary uploader_cookie cookie.
Maian Script World Maian Uploader
1 EDB exploit
NA
CVE-2008-3322
admin/index.php in Maian Recipe 1.2 and previous versions allows remote malicious users to bypass authentication and gain administrative access by sending an arbitrary recipe_cookie cookie.
Maian Recipe
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »