Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pouya_server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5976
Multiple cross-site scripting (XSS) vulnerabilities in siteadmin/forgot.php in PHP JOBWEBSITE PRO allow remote malicious users to inject arbitrary web script or HTML via (1) the adname parameter in a Submit action or (2) the UserName field.
Preprojects Php Jobwebsite Pro
1 EDB exploit
NA
CVE-2009-0334
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote malicious users to execute arbitrary SQL commands via the day parameter in an archive action.
Katywhitton Blogit! Nil
1 EDB exploit
NA
CVE-2009-0336
Katy Whitton BlogIt! stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file containing user credentials via a direct request for database/Blog.mdb. NOTE: some of these details are obtaine...
Katywhitton Blogit! Nil
1 EDB exploit
NA
CVE-2009-0337
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote malicious users to execute arbitrary SQL commands via the (1) month and (2) year parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inform...
Katywhitton Blogit! Nil
1 EDB exploit
NA
CVE-2009-0339
SQL injection vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote malicious users to execute arbitrary SQL commands via the itemID parameter in a view action.
Dmxready Blog Manager Nil
1 EDB exploit
NA
CVE-2009-0430
Multiple cross-site scripting (XSS) vulnerabilities in Active Bids allow remote malicious users to inject arbitrary web script or HTML via the (1) search parameter to search.asp and the (2) URL parameter to tellafriend.asp.
Activewebsoftwares Active Bids
1 EDB exploit
NA
CVE-2008-6386
Cross-site scripting (XSS) vulnerability in showads.php in Z1Exchange 1.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
1scripts Z1exchange 1.0
1 EDB exploit
NA
CVE-2008-6391
SQL injection vulnerability in main.asp in Jbook allows remote malicious users to execute arbitrary SQL commands via the username (user parameter).
Nexusjnr Jbook -
1 EDB exploit
NA
CVE-2008-6495
Cross-site scripting (XSS) vulnerability in index.php in Fritz Berger yet another php photo album - next generation (yappa-ng) 2.3.2 allows remote malicious users to inject arbitrary web script or HTML via the album parameter.
Zirkon Box Yappa-ng 2.3.2
1 EDB exploit
NA
CVE-2008-6500
Cross-site scripting (XSS) vulnerability in CodeToad ASP Shopping Cart Script allows remote malicious users to inject arbitrary web script or HTML via the query string to the default URI.
Codetoad Asp Shopping Cart Script
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »