Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zorlu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4906
SQL injection vulnerability in lyrics_song.php in the Lyrics (lyrics_menu) plugin 0.42 for e107 allows remote malicious users to execute arbitrary SQL commands via the l_id parameter. NOTE: some of these details are obtained from third party information.
W1n78 Lyrics 0.4.2
1 EDB exploit
NA
CVE-2005-4879
Multiple cross-site scripting (XSS) vulnerabilities in jax_guestbook.php in Jax Guestbook 3.1 and 3.31 allow remote malicious users to inject arbitrary web script or HTML via the (1) gmt_ofs and (2) language parameters. NOTE: the page parameter is already covered by CVE-2006-1913...
Jax Scripts Jax Guestbook 3.31
Jax Scripts Jax Guestbook 3.1
1 EDB exploit
NA
CVE-2008-2219
Cross-site scripting (XSS) vulnerability in install.php in C-News.fr C-News 1.0.1 allows remote malicious users to inject arbitrary web script or HTML via the etape parameter.
C-news.fr C-news 1.0.1
1 EDB exploit
NA
CVE-2008-5288
PHP remote file inclusion vulnerability in include/header.php in Werner Hilversum FAQ Manager 1.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the config_path parameter.
Scripts4you Faq Manager 1.2
1 EDB exploit
NA
CVE-2008-5306
SQL injection vulnerability in admin/index.php in PG Real Estate Solution allows remote malicious users to execute arbitrary SQL commands via the login_lg parameter (username). NOTE: some of these details are obtained from third party information.
Pilot Group Pg Real Estate Solution Nil
1 EDB exploit
NA
CVE-2008-5215
SQL injection vulnerability in service/profil.php in ClanLite 2.2006.05.20 allows remote malicious users to execute arbitrary SQL commands via the link parameter.
Clanlite Clanlite 2.2006.05.20
1 EDB exploit
NA
CVE-2008-5951
ASP Template Creature stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for workDB/templatemonster.mdb.
Aspapps Template Creature Nil
1 EDB exploit
NA
CVE-2008-6244
SQL injection vulnerability in view_reviews.php in Scripts for Sites (SFS) EZ Gaming Cheats allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Scripts-for-sites Ez Gaming Cheats -
1 EDB exploit
NA
CVE-2008-6545
PHP remote file inclusion vulnerability in news/include/createdb.php in Web Server Creator Web Portal 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the langfile parameter. NOTE: the provenance of this information is unknown; the details are obtained...
Comscripts Web Server Creator Web Portal 0.1
1 EDB exploit
NA
CVE-2008-1355
Cross-site scripting (XSS) vulnerability in index.php in Jeebles Technology Jeebles Directory 2.9.60 allows remote malicious users to inject arbitrary web script or HTML via the path parameter. NOTE: the provenance of this information is unknown; the details are obtained solely f...
Jeeblestechnology Jeebles Directory 2.9.60
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »