Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
waraxe vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-2821
SQL injection vulnerability in wp-admin/admin-ajax.php in WordPress prior to 2.2 allows remote malicious users to execute arbitrary SQL commands via the cookie parameter.
Wordpress Wordpress
1 EDB exploit
1 Github repository
6.5
CVSSv2
CVE-2009-0673
Eval injection vulnerability in the Custom Fields feature in the Your Account module in Raven Web Services RavenNuke 2.30 allows remote authenticated administrators to execute arbitrary PHP code via the ID Field Name box in a yaCustomFields action to admin.php.
Ravenphpscripts Ravennuke 2.30
1 EDB exploit
6
CVSSv2
CVE-2009-0674
images/captcha.php in Raven Web Services RavenNuke 2.30, when register_globals and display_errors are enabled, allows remote malicious users to determine the existence of local files by sending requests with full pathnames in the aFonts array parameter, and then observing the err...
Ravenphpscripts Ravennuke 2.30
1 EDB exploit
4.3
CVSSv2
CVE-2004-1930
Cross-site scripting (XSS) vulnerability in the cookiedecode function in mainfile.php for PHP-Nuke 6.x up to and including 7.2, when themes are used, allows remote malicious users to inject arbitrary web script or HTML via a base64-encoded user parameter or cookie.
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.0
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 6.5 Rc1
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 7.2
1 EDB exploit
4.3
CVSSv2
CVE-2004-1960
Cross-site scripting (XSS) vulnerability in blocker_query.php in Protector System 1.15b1 allows remote malicious users to inject arbitrary web script or HTML via the (1) target or (2) portNum parameters.
Protector System Protector System 1.15b1
1 EDB exploit
7.5
CVSSv2
CVE-2004-1962
SQL injection vulnerability in index.php in Protector System 1.15b1 allows remote malicious users to bypass SQL injection filters by using "/**/" sequences in the targeted fields.
Protector System Protector System 1.15b1
1 EDB exploit
7.5
CVSSv2
CVE-2012-1603
Multiple SQL injection vulnerabilities in ajaxserver.php in NextBBS 0.6 allow remote malicious users to execute arbitrary SQL commands via the (1) curstr parameter in the findUsers function, (2) id parameter in the isIdAvailable function, or (3) username parameter in the getGreet...
Nextbbs Nextbbs 0.6
1 EDB exploit
4.3
CVSSv2
CVE-2012-1604
Cross-site scripting (XSS) vulnerability in NextBBS 0.6 allows remote malicious users to inject arbitrary web script or HTML via the do parameter to index.php.
Nextbbs Nextbbs 0.6
1 EDB exploit
5
CVSSv2
CVE-2012-1614
Coppermine Photo Gallery prior to 1.5.20 allows remote malicious users to obtain sensitive information via (1) a direct request to plugins/visiblehookpoints/index.php, an invalid (2) page or (3) cat parameter to thumbnails.php, an invalid (4) page parameter to usermgr.php, or an ...
Coppermine-gallery Coppermine Photo Gallery 1.4.17
Coppermine-gallery Coppermine Photo Gallery 1.5.8
Coppermine-gallery Coppermine Photo Gallery 1.4.11
Coppermine-gallery Coppermine Photo Gallery 1.4.19
Coppermine-gallery Coppermine Photo Gallery 1.4.14
Coppermine-gallery Coppermine Photo Gallery 1.2.0
Coppermine-gallery Coppermine Photo Gallery 1.4.8
Coppermine-gallery Coppermine Photo Gallery 1.2.1
Coppermine-gallery Coppermine Photo Gallery 1.4.23
Coppermine-gallery Coppermine Photo Gallery 1.4.22
Coppermine-gallery Coppermine Photo Gallery 1.4.7
Coppermine-gallery Coppermine Photo Gallery 1.4.0
Coppermine-gallery Coppermine Photo Gallery 1.5.4
Coppermine-gallery Coppermine Photo Gallery 1.4.2
Coppermine-gallery Coppermine Photo Gallery 1.4.26
Coppermine-gallery Coppermine Photo Gallery 1.4.16
Coppermine-gallery Coppermine Photo Gallery 1.5.10
Coppermine-gallery Coppermine Photo Gallery 1.4.3
Coppermine-gallery Coppermine Photo Gallery 1.2
Coppermine-gallery Coppermine Photo Gallery 1.5.14
Coppermine-gallery Coppermine Photo Gallery 1.5.6
Coppermine-gallery Coppermine Photo Gallery 1.5.16
1 EDB exploit
3.5
CVSSv2
CVE-2009-2156
Multiple cross-site scripting (XSS) vulnerabilities in TorrentTrader Classic 1.09 allow remote authenticated users to inject arbitrary web script or HTML via (1) the Title field to requests.php, related to viewrequests.php; and (2) the Torrent Name field to torrents-upload.php, r...
Torrenttrader Torrenttrader Classic 1.09
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »