Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
website vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3525
Ripe Website Manager 0.8.9 and previous versions allows remote malicious users to obtain configuration information via a direct request to includes/phpinfo.php, which calls the phpinfo function. NOTE: the provenance of this information is unknown; the details are obtained solely ...
Ripe Website Manager Ripe Website Manager
NA
CVE-2007-2206
Cross-site scripting (XSS) vulnerability in contact/index.php in Ripe Website Manager 0.8.4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a leading "<"<" in the ripeformpost parameter.
Ripe Website Manager Ripe Website Manager
NA
CVE-2007-2207
SQL injection vulnerability in contact/index.php in Ripe Website Manager 0.8.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the ripeformpost parameter.
Ripe Website Manager Ripe Website Manager
1 EDB exploit
8.8
CVSSv3
CVE-2022-27346
Ecommece-Website v1.1.0 exists to contain an arbitrary file upload vulnerability via /admin/index.php?slides. This vulnerability allows malicious users to execute arbitrary code via a crafted PHP file.
Ecommerce-website Project Ecommerce-website 1.1.0
9.8
CVSSv3
CVE-2022-27357
Ecommerce-Website v1 exists to contain an arbitrary file upload vulnerability via /customer_register.php. This vulnerability allows malicious users to execute arbitrary code via a crafted PHP file.
Ecommerce-website Project Ecommerce-website 1.0
4.8
CVSSv3
CVE-2022-27436
A cross-site scripting (XSS) vulnerability in /public/admin/index.php?add_user at Ecommerce-Website v1.1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the username text field.
Ecommerce-website Project Ecommerce-website 1.1.0
9.8
CVSSv3
CVE-2022-2736
A vulnerability was found in SourceCodester Company Website CMS. It has been classified as critical. This affects an unknown part of the file /dashboard/updatelogo.php of the component Background Upload Logo Icon. The manipulation of the argument xfile/ufile leads to unrestricted...
Company Website Cms Project Company Website Cms -
9.8
CVSSv3
CVE-2022-2750
A vulnerability, which was classified as critical, was found in SourceCodester Company Website CMS. Affected is an unknown function of the file /dashboard/add-service.php of the component Add Service Handler. The manipulation leads to unrestricted upload. It is possible to launch...
Company Website Cms Project Company Website Cms -
NA
CVE-2006-6220
Multiple SQL injection vulnerabilities in Recipes Website (Recipes Complete Website) 1.1.14 allow remote malicious users to execute arbitrary SQL commands via the (1) recipeid parameter to recipe.php or the (2) categoryid parameter to list.php.
Recipes Complete Website Recipes Complete Website 1.1.14
1 EDB exploit
NA
CVE-2008-0665
wml_backend/p1_ipp/ipp.src in Website META Language (WML) 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file.
Website Meta Language Website Meta Language 2.0.11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »