Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aliaksandr hartsuyeu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0409
Cross-site scripting (XSS) vulnerability in index.php in Pixelpost Photoblog 1.4.3 allows remote malicious users to inject arbitrary web script or HTML via the "Add Comment" field in a comment popup.
Pixelpost Photoblog 1.4.3
1 EDB exploit
NA
CVE-2006-0417
SQL injection vulnerability in login.php in miniBloggie 1.0 and previous versions, when gpc_magic_quotes is disabled, allows remote malicious users to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password parameters.
Mywebland Minibloggie
1 EDB exploit
NA
CVE-2006-0443
Cross-site scripting (XSS) vulnerability in archive.php in CheesyBlog 1.0 allows remote malicious users to inject arbitrary web script or HTML via the (1) realname and (2) comment parameters, or (3) via a javascript URI in the url parameter, when adding a comment.
Cheesyblog Cheesyblog 1.0
1 EDB exploit
NA
CVE-2006-0461
Cross-site scripting (XSS) vulnerability in core.input.php in ExpressionEngine 1.4.1 allows remote malicious users to inject arbitrary web script or HTML via HTTP_REFERER (referer).
Pmachine Expressionengine 1.4.1
1 EDB exploit
NA
CVE-2006-0473
Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote malicious users to inject arbitrary Javascript via a javascript URI in BBcode link tags.
My Little Homepage My Little Weblog 2004-04-20
1 EDB exploit
NA
CVE-2010-4783
Multiple cross-site scripting (XSS) vulnerabilities in index.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magic_quotes_gpc is disabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) siteurl and (2) urlbanner parameters.
Phpwebscripts Easy Banner Free 2009.05.18
1 EDB exploit
NA
CVE-2006-0066
SQL injection vulnerability in index.php in PHPjournaler 1.0 allows remote malicious users to execute arbitrary SQL commands via the readold parameter.
Phpjournaler Phpjournaler 1.0
1 EDB exploit
NA
CVE-2006-0075
Direct static code injection vulnerability in phpBook 1.3.2 and previous versions allows remote malicious users to execute arbitrary PHP code via the e-mail field (mail variable) in a new message, which is written to a PHP file.
Gnu Phpbook
Gnu Phpbook 1.2
Gnu Phpbook 1.3
Gnu Phpbook 1.0
Gnu Phpbook 1.1
1 EDB exploit
NA
CVE-2006-0076
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the inc parameter.
Oaboard Oaboard 1.0
1 EDB exploit
NA
CVE-2006-0088
SQL injection vulnerability in intouch.lib.php in inTouch 0.5.1 Alpha allows remote malicious users to execute arbitrary SQL commands via the user parameter.
Intouch Intouch 0.5.1 Alpha
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »