Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aria-security team vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1974
Cross-site scripting (XSS) vulnerability in addevent.php in Horde Kronolith 2.1.7, Groupware Webmail Edition 1.0.6, and Groupware 1.0.5 allows remote malicious users to inject arbitrary web script or HTML via the url parameter.
Horde Groupware 1.0.5
Horde Groupware Webmail Edition 1.0.6
1 EDB exploit
NA
CVE-2007-4106
SQL injection vulnerability in login.asp in CodeWidgets Pay Roll - Time Sheet and Punch Card Application With Web Interface allows remote malicious users to execute arbitrary SQL commands via the Password parameter.
Codewidgets Punch Card
Codewidgets Pay Roll - Time Sheet
1 EDB exploit
NA
CVE-2007-4109
SQL injection vulnerability in sign_in.aspx in WebStore (Online Store Application Template) allows remote malicious users to execute arbitrary SQL commands via the Password parameter.
Codewidgets Online Event Registration Template
1 EDB exploit
NA
CVE-2008-1162
SQL injection vulnerability in album.php in PHP WEB SCRIPT Dynamic Photo Gallery 1.02 allows remote malicious users to execute arbitrary SQL commands via the albumID parameter.
Php Web Scripts Dynamic Photo Gallery 1.0.2
1 EDB exploit
NA
CVE-2006-6937
SQL injection vulnerability in displaypic.asp in Xtreme ASP Photo Gallery allows remote malicious users to inject arbitrary SQL commands via the sortorder parameter.
Pensacola Web Designs Xtremeasp Photogallery 2.0
1 EDB exploit
NA
CVE-2006-6181
Multiple SQL injection vulnerabilities in default.asp in ClickTech ClickContact allow remote malicious users to execute arbitrary SQL commands via the (1) AlphaSort, (2) In, and (3) orderby parameters.
Clicktech Clickcontact
1 EDB exploit
NA
CVE-2006-6243
Multiple SQL injection vulnerabilities in index.asp in FipsSHOP allow remote malicious users to execute arbitrary SQL commands via the (1) cat or (2) did parameter.
Fipsasp Fipsshop
1 EDB exploit
NA
CVE-2006-5987
SQL injection vulnerability in default.asp in ASPintranet, possibly 1.2, allows remote malicious users to execute arbitrary SQL commands via the a parameter.
Aspintranet Aspintranet 1.2
1 EDB exploit
NA
CVE-2006-6080
Multiple SQL injection vulnerabilities in categories.asp in gNews Publisher allow remote malicious users to execute arbitrary SQL commands via the (1) catID or (2) editorID parameter.
Gazatem Technologies Gnews Publisher
1 EDB exploit
NA
CVE-2006-6088
Multiple cross-site scripting (XSS) vulnerabilities in BlueCollar i-Gallery 3.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) n or (2) d parameter in igallery.asp, or (3) an unspecified parameter related to search, possibly the Search Gallery fie...
Blue-collar Productions I-gallery 3.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »