Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x0r vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-7003
Multiple SQL injection vulnerabilities in login.php in The Rat CMS Alpha 2 allow remote malicious users to execute arbitrary SQL commands via the (1) user_id and (2) password parameter.
The-rat-cms The-rat-cms Alpha2
1 EDB exploit
755
VMScore
CVE-2009-0738
SQL injection vulnerability in login.php in Auth Php 1.0 allows remote malicious users to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
Frankmancuso Auth Php 1.0
1 EDB exploit
755
VMScore
CVE-2009-0864
S-Cms 1.1 Stable allows remote malicious users to bypass authentication and obtain administrative access via an OK value for the login cookie.
Matteoiammarrone S-cms 1.1
1 EDB exploit
755
VMScore
CVE-2008-6237
SQL injection vulnerability in software-description.php in Scripts For Sites (SFS) Hotscripts-like Site allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Scripts-for-sites Hotscripts-like Site -
1 EDB exploit
755
VMScore
CVE-2008-6861
Xigla Software Absolute Newsletter 6.0 and 6.1 allows remote malicious users to bypass authentication and gain administrative access by setting a cookie to a certain value.
Xigla Absolute Newsletter 6.0
Xigla Absolute Newsletter 6.1
1 EDB exploit
685
VMScore
CVE-2008-6361
Directory traversal vulnerability in index.php in InSun Feed CMS 1.7.3 19Beta allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the lang parameter.
Insun Podcast Feedcms 1.7.3 19beta
1 EDB exploit
755
VMScore
CVE-2008-4783
tlAds 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the tlAds_login cookie to "admin."
Easy-script Tlads 1.0
1 EDB exploit
755
VMScore
CVE-2008-4752
TlNews 2.2 allows remote malicious users to bypass authentication and gain administrative access by setting the tlNews_login cookie to admin.
Tech Logic Tlnews 2.2
1 EDB exploit
755
VMScore
CVE-2008-4781
Directory traversal vulnerability in update.php in MyKtools 2.4 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the langage parameter.
Easy-script Myktools 2.4
1 EDB exploit
755
VMScore
CVE-2009-4807
Multiple SQL injection vulnerabilities in Graugon PHP Article Publisher 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) c parameter to index.php and the (2) id parameter to view.php.
Graugon Php Article Publisher 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »