Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joss vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-2915
SQL injection vulnerability in welcome.php in AJ Square AJ HYIP PRIME allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ajsquare Aj Hyip Prime
1 EDB exploit
NA
CVE-2010-2916
SQL injection vulnerability in news.php in AJ Square AJ HYIP MERIDIAN allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ajsquare Aj Hyip Meridian
1 EDB exploit
NA
CVE-2010-1711
Cross-site scripting (XSS) vulnerability in carga_foto_al.php in Siestta 2.0, when register_globals is enabled, allows remote malicious users to inject arbitrary web script or HTML via the usuario parameter.
Ramoncastro Siestta 2.0
1 EDB exploit
NA
CVE-2007-5455
Cross-site scripting (XSS) vulnerability in wxis.exe in WWWISIS 7.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a call to the iah/iah.xis IsisScript code, possibly involving the lang or exprSearch parameter.
Wwwisis Wwwisis 5.0
1 EDB exploit
NA
CVE-2008-5965
Directory traversal vulnerability in index.php in LokiCMS 0.3.4 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to check for the existence of arbitrary files via a .. (dot dot) in the page parameter.
Lokicms Lokicms 0.1.0rc1
Lokicms Lokicms 0.3.0
Lokicms Lokicms 0.3.2b1
Lokicms Lokicms 0.3.1b2
Lokicms Lokicms
Lokicms Lokicms 0.2.0
Lokicms Lokicms 0.1.0
Lokicms Lokicms 0.3.1b1
Lokicms Lokicms 0.3.3
1 EDB exploit
NA
CVE-2008-6089
Directory traversal vulnerability in main.php in ScriptsEz Easy Image Downloader allows remote malicious users to read arbitrary files via a .. (dot dot) in the id parameter in a download action.
Scriptsez Easy Image Downloader -
1 EDB exploit
NA
CVE-2008-6090
Directory traversal vulnerability in members.php in ScriptsEz Mini Hosting Panel allows remote malicious users to read arbitrary local files via a .. (dot dot) in the dir parameter in a view action.
Scriptsez Mini Hosting Panel -
1 EDB exploit
NA
CVE-2008-5268
SQL injection vulnerability in content/forums/reply.asp in ASPPortal allows remote malicious users to execute arbitrary SQL commands via the Topic_Id parameter.
Aspportal Aspportal Free
1 EDB exploit
NA
CVE-2007-5484
Directory traversal vulnerability in wxis.exe in WWWISIS 7.1 allows local users to read arbitrary files via a .. (dot dot) in the IsisScript parameter to iah.
Wwwisis Wwwisis 7.1
1 EDB exploit
NA
CVE-2008-1344
Multiple SQL injection vulnerabilities in MyioSoft EasyCalendar 4.0tr and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) year parameter in a dayview action to plugins/calendar/calendar_backend.php and the (2) page parameter to ajaxp_b...
Myiosoft Easycalendar 4.0tr
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »