Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s.w.a.t. vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2008-6900
Unrestricted file upload vulnerability in "Add Pen/Author Name" feature in addpen.php in AvailScript Article Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to th...
Availscript Availscript Article Script
1 EDB exploit
7.5
CVSSv2
CVE-2008-4709
SQL injection vulnerability in news_read.php in Pilot Group (PG) eTraining allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Pilot Group Etraining
1 EDB exploit
7.5
CVSSv2
CVE-2008-3749
SQL injection vulnerability in tr.php in YourFreeWorld Banner Management Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Banner Management Script
1 EDB exploit
6.8
CVSSv2
CVE-2008-6751
Unrestricted file upload vulnerability in index.php in the Twitter Clone (TClone) plugin for ReVou Micro Blogging allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in settin...
Revou Tclone
1 EDB exploit
5.8
CVSSv2
CVE-2008-0501
Directory traversal vulnerability in phpMyClub 0.0.1 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page_courante parameter to the top-level URI.
Sourceforge Phpmyclub 0.0.1
1 EDB exploit
5.8
CVSSv2
CVE-2007-6133
PHP remote file inclusion vulnerability in admin/kfm/initialise.php in DevMass Shopping Cart 1.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the kfm_base_path parameter.
Devmass Devmass Cart 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2007-5387
PHP remote file inclusion vulnerability in active/components/xmlrpc/client.php in Pindorama 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the c[components] parameter.
Pindorama Pindorama 0.1
1 EDB exploit
6.8
CVSSv2
CVE-2007-5388
Multiple PHP remote file inclusion vulnerabilities in WebDesktop 0.1 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) app parameter to apps/apps.php and the (2) wsk parameter to wsk/wsk.php.
Webdesktop Webdesktop 0.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-6142
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPic 0.0.4 and FlexPHPic Pro 0.0.3, and other 0.0.x versions, allow remote malicious users to execute arbitrary SQL commands via (1) the checkuser parameter (aka username field), or (2) the checkpass parameter ...
China-on-site Flexphpic 0.0.4
China-on-site Flexphpic 0.0.3
1 EDB exploit
7.5
CVSSv2
CVE-2008-6150
SQL injection vulnerability in classdis.asp in SepCity Classified Ads allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Sepcity Classified Ads -
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »