Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
l0rd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4978
Cross-site scripting (XSS) vulnerability in image/view.php in CANDID allows remote malicious users to inject arbitrary web script or HTML via the image_id parameter.
Nicholas Berry Candid
1 EDB exploit
NA
CVE-2010-4981
SQL injection vulnerability in trackads.php in YourFreeWorld Banner Management allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
Yourfreeworld Banner Management -
1 EDB exploit
NA
CVE-2010-4984
SQL injection vulnerability in notes.php in My Kazaam Notes Management System allows remote malicious users to execute arbitrary SQL commands via vectors involving the "Enter Reference Number Below" text box.
Mykazaam Notes Management System -
1 EDB exploit
NA
CVE-2010-4985
Cross-site scripting (XSS) vulnerability in notes.php in My Kazaam Notes Management System allows remote malicious users to inject arbitrary web script or HTML via vectors involving the "Enter Reference Number Below" text box.
Mykazaam Notes Management System -
1 EDB exploit
NA
CVE-2010-4999
SQL injection vulnerability in index.php in esoftpro Online Photo Pro 2.0 allows remote malicious users to execute arbitrary SQL commands via the section parameter.
Esoftpro Online Photo Pro 2.0
1 EDB exploit
NA
CVE-2010-5000
SQL injection vulnerability in login/login_index.php in MCLogin System 1.1 and 1.2 allows remote malicious users to execute arbitrary SQL commands via the myusername parameter (aka Username field) in a do_login action. NOTE: some of these details are obtained from third party inf...
Joe Pieruccini Mclogin System 1.2
Joe Pieruccini Mclogin System 1.1
1 EDB exploit
NA
CVE-2010-5001
SQL injection vulnerability in view.php in esoftpro Online Contact Manager 3.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Esoftpro Online Contact Manager 3.0
1 EDB exploit
NA
CVE-2010-5045
Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote malicious users to inject arbitrary web script or HTML via the catid parameter.
Sellatsite Smart Asp Survey
1 EDB exploit
NA
CVE-2010-4365
SQL injection vulnerability in JE Ajax Event Calendar (com_jeajaxeventcalendar) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the event_id parameter in an alleventlist_more action to index.php.
Harmistechnology Com Jeajaxeventcalendar
2 EDB exploits
9.8
CVSSv3
CVE-2018-12908
Brynamics "Online Trade - Online trading and cryptocurrency investment system" allows remote malicious users to obtain sensitive information via a direct request for the /dashboard/deposit URI, as demonstrated by discovering database credentials.
Brynamics Brynamics -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »