Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alstrasoft vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-3240
SQL injection vulnerability in index.php in AlstraSoft Affiliate Network Pro allows remote malicious users to execute arbitrary SQL commands via the pgm parameter in a directory action.
Alstrasoft Affiliate Network Pro
1 EDB exploit
4.3
CVSSv2
CVE-2006-2618
Cross-site scripting (XSS) vulnerability in (1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, might allow remote malicious users to inject arbitrary web script or HTML via the "write a review" box. NOTE: since user reviews do not require ad...
Alstrasoft Webhost Directory 1.2
7.5
CVSSv2
CVE-2005-3062
PHP remote file inclusion vulnerability in index.php in AlstraSoft E-Friends 4.0 allows remote malicious users to execute arbitrary PHP code via the mode parameter.
Alstrasoft E-friends 4.0
7.5
CVSSv2
CVE-2005-3797
PHP remote file inclusion vulnerability in payment_paypal.php in AlstraSoft Template Seller Pro 3.25 allows remote malicious users to execute arbitrary PHP code via the config[basepath] parameter.
Alstrasoft Template Seller 3.25
1 EDB exploit
10
CVSSv2
CVE-2007-2775
AlstraSoft Live Support 1.21 sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote malicious users to obtain administrative access via a direct request to admin/managesettings.php.
Alstrasoft Live Support 1.21
1 EDB exploit
7.5
CVSSv2
CVE-2006-2616
SQL injection vulnerability in the search script in (1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows remote malicious users to execute arbitrary SQL commands via the uri parameter.
Alstrasoft Webhost Directory 1.2
5
CVSSv2
CVE-2006-2617
(1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows remote malicious users to obtain the installation path via an invalid entry in the Username field on the login page, which causes the path to be displayed in an SQL error. NOTE: this issue migh...
Alstrasoft Webhost Directory 1.2
6.8
CVSSv2
CVE-2007-5223
Multiple unspecified vulnerabilities in AlstraSoft Affiliate Network Pro allow remote malicious users to include local files and have other unspecified impact, related to incorrect input validation or other defects involving (1) admin/backupstart.php, (2) a .sql filename under ad...
Alstrasoft Affiliate Network Pro 8.0
7.5
CVSSv2
CVE-2005-3793
Multiple SQL injection vulnerabilities in AlstraSoft Affiliate Network Pro 7.2 allow remote malicious users to bypass authentication and execute arbitrary SQL commands via the (1) username or (2) password to admin/admin_validate_login, or the (3) login, (4) password, and (5) flag...
Alstrasoft Affiliate Network Pro 7.2
5
CVSSv2
CVE-2005-3794
AlstraSoft Affiliate Network Pro 7.2 allows remote malicious users to obtain sensitive information via a direct request to scripts such as (1) togateway.php and (2) other unspecified scripts.
Alstrasoft Affiliate Network Pro 7.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »