Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alphanix vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-5573
SQL injection vulnerability in the login feature in Poll Pro 2.0 allows remote malicious users to execute arbitrary SQL commands via the (1) Password and (2) username parameters.
Adcomplete Poll Pro 2.0
1 EDB exploit
755
VMScore
CVE-2008-5589
SQL injection vulnerability in processlogin.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the (1) txtusername parameter (aka username field) or the (2) txtpassword parameter (aka password field). NOTE: some of these details are obt...
Katywhitton Rankem
1 EDB exploit
505
VMScore
CVE-2008-5592
Nightfall Personal Diary 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for users-zza21.mdb.
Iwrite Nightfall Personal Diary 1.0
1 EDB exploit
505
VMScore
CVE-2008-5601
User Engine Lite ASP stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for users.mdb.
Robs-projects Asp User Engine Nil
1 EDB exploit
505
VMScore
CVE-2008-5602
Natterchat 1.12 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for natterchat112.mdb.
Natterchat Natterchat 1.12
1 EDB exploit
760
VMScore
CVE-2009-0542
SQL injection vulnerability in ProFTPD Server 1.3.1 up to and including 1.3.2rc2 allows remote malicious users to execute arbitrary SQL commands via a "%" (percent) character in the username, which introduces a "'" (single quote) character during variable...
Proftpd Project Proftpd 1.3.1
Proftpd Project Proftpd 1.3.2 Rc2
Proftpd Project Proftpd 1.3.2
2 EDB exploits
510
VMScore
CVE-2008-5608
ASP AutoDealer stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for auto.mdb.
Aspapps Asp Autodealer Nil
2 EDB exploits
760
VMScore
CVE-2008-5632
SQL injection vulnerability in Account.asp in Active Time Billing 3.2 allows remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party informa...
Activewebsoftwares Active Time Billing 3.2
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4