Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
janek vind vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-2008
SQL injection vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote malicious users to execute arbitrary SQL via the jokeid parameter.
Adam Webb Nukejokes 1.7
Adam Webb Nukejokes 2.0 Beta
1 EDB exploit
NA
CVE-2007-2338
Cross-site request forgery (CSRF) vulnerability in include/admin/banlist.php in Phorum prior to 5.1.22 allows remote malicious users to perform unauthorized banlist deletions as an administrator via the delete parameter.
Phorum Phorum
1 EDB exploit
NA
CVE-2004-1953
phProfession 2.5 allows remote malicious users to gain sensitive information via a direct HTTP request to upload.php, which reveals the path in a PHP error message.
Phprofession Phprofession 2.5
1 EDB exploit
NA
CVE-2004-1954
Cross-site scripting (XSS) vulnerability in modules.php in phProfession 2.5 allows remote malicious users to inject arbitrary web script or HTML via the jcode parameter.
Phprofession Phprofession 2.5
1 EDB exploit
NA
CVE-2004-1955
SQL injection vulnerability in modules.php in phProfession 2.5 allows remote malicious users to execute arbitrary SQL code via the offset parameter.
Phprofession Phprofession 2.5
1 EDB exploit
NA
CVE-2004-1986
Directory traversal vulnerability in modules.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to read arbitrary files via a .. (dot dot) in the startdir parameter.
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.1 .0
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 7.2
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
1 EDB exploit
NA
CVE-2004-1989
PHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote malicious users to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL on a remote web server that contains user_list_info_box.inc.
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.1 .0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.0
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.2
Francisco Burzi Php-nuke 7.2
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
1 EDB exploit
NA
CVE-2004-2007
Cross-site scripting (XSS) vulnerability in modules.php in NukeJokes 1.7 and 2 Beta allows remote malicious users to inject arbitrary HTML or web script via the (1) cat parameter in a CatView function or (2) jokeid parameter in a JokeView function.
Adam Webb Nukejokes 1.7
Adam Webb Nukejokes 2.0 Beta
1 EDB exploit
NA
CVE-2012-2413
Cross-site scripting (XSS) vulnerability in the ja_purity template for Joomla! 1.5.26 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the Mod* cookie parameter to html/modules.php.
Joomla Joomla\\! 1.5.20
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.14
Joomla Joomla\\! 1.5.13
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.22
Joomla Joomla\\! 1.5.21
Joomla Joomla\\! 1.5.15
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.6
Joomla Joomla\\!
Joomla Joomla\\! 1.5.25
Joomla Joomla\\! 1.5.19
Joomla Joomla\\! 1.5.18
Joomla Joomla\\! 1.5.12
Joomla Joomla\\! 1.5.11
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.1
Joomla Joomla\\! 1.5.24
Joomla Joomla\\! 1.5.23
Joomla Joomla\\! 1.5.17
NA
CVE-2012-2412
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-4531. Reason: This candidate is a duplicate of CVE-2012-4531. Notes: All CVE users should reference CVE-2012-4531 instead of this candidate. All references and descriptions in this candidate have been removed...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »