Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
t0pp8uzz vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-1864
SQL injection vulnerability in project.php in Prozilla Freelancers allows remote malicious users to execute arbitrary SQL commands via the project parameter.
Prozilla Prozilla Freelancers
1 EDB exploit
655
VMScore
CVE-2008-1871
SQL injection vulnerability in links.php in Scriptsagent.com Links Directory 1.1 allows remote authenticated users to execute arbitrary SQL commands via the cat_id parameter in a list action.
Scriptsagent Links Directory 1.1
1 EDB exploit
755
VMScore
CVE-2008-1872
SQL injection vulnerability in home.news.php in Comdev News Publisher 4.1.2 allows remote malicious users to execute arbitrary SQL commands via the arcmonth parameter. NOTE: some of these details are obtained from third party information.
Comdev Comdev News Publisher 4.1.2
1 EDB exploit
655
VMScore
CVE-2008-1874
SQL injection vulnerability in account/user/mail.html in Xpoze Pro 3.05 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the reed parameter.
Xpoze Xpoze Pro
1 EDB exploit
755
VMScore
CVE-2008-1875
SQL injection vulnerability in index.php in Terong PHP Photo Gallery (aka Advanced Web Photo Gallery) 1.0 allows remote malicious users to execute arbitrary SQL commands via the photo_id parameter.
Terong Advanced Web Photo Gallery 1.0
1 EDB exploit
755
VMScore
CVE-2008-1904
Cicoandcico CcMail 1.0.1 and previous versions does not verify that the this_cookie cookie corresponds to an authenticated session, which allows remote malicious users to obtain access to the "admin area" via a modified this_cookie cookie.
Cicoandcico Ccmail 1.0
Cicoandcico Ccmail
1 EDB exploit
755
VMScore
CVE-2008-1954
SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_id parameter.
Webcalendar Web Calendar Pro
Webcalendar Web Calendar Pro 4.0
1 EDB exploit
755
VMScore
CVE-2008-1971
phShoutBox Final 1.5 and previous versions only checks passwords when specified in $_POST, which allows remote malicious users to gain privileges by setting the (1) phadmin cookie to admin.php, or (2) in 1.4 and previous versions, the ssbadmin cookie to shoutadmin.php.
Phphq Phshoutbox Final
1 EDB exploit
685
VMScore
CVE-2008-6811
Unrestricted file upload vulnerability in image_processing.php in the e-Commerce Plugin 3.4 and previous versions for Wordpress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the ...
Instinct E-commerce Plugin
1 EDB exploit
755
VMScore
CVE-2008-2921
SQL injection vulnerability in index.php in EZTechhelp EZCMS 1.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Eztechhelp Company Ezcms 1.1
Eztechhelp Company Ezcms
Eztechhelp Company Ezcms 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »