Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gulftech security vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2004-1417
Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and previous versions allows remote malicious users to inject arbitrary web script or HTML via the login parameter.
Psychostats Psychostats 2.2.2
Psychostats Psychostats
Psychostats Psychostats 2.2.1
Psychostats Psychostats 2.0
Psychostats Psychostats 2.0.1
Psychostats Psychostats 2.2
Psychostats Psychostats 2.1
1 EDB exploit
4.3
CVSSv2
CVE-2004-1420
Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.
Whm Autopilot 2.4.6
Whm Autopilot 2.4.6.5
Whm Autopilot 2.4.5
1 EDB exploit
7.5
CVSSv2
CVE-2004-1421
Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and previous versions allow remote malicious users to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL...
Whm Whm Autopilot 2.4.6
Whm Whm Autopilot 2.4.6.5
Whm Whm Autopilot 2.4.5
1 EDB exploit
7.5
CVSSv2
CVE-2004-1423
Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar prior to 0.10.1, as used in Commonwealth of Massachusetts Virtual Law Office (VLO) and other products, allow remote malicious users to execute arbitrary PHP code via a URL in the phpc_root_path parame...
Php-calendar Php-calendar 0.8
Php-calendar Php-calendar 0.9
Php-calendar Php-calendar 0.1
Php-calendar Php-calendar 0.2
Php-calendar Php-calendar 0.9.1
Php-calendar Php-calendar
Php-calendar Php-calendar 0.5
Php-calendar Php-calendar 0.6
Php-calendar Php-calendar 0.7
Php-calendar Php-calendar 0.3
Php-calendar Php-calendar 0.4
1 EDB exploit
7.5
CVSSv2
CVE-2005-2108
SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.
Wordpress Wordpress 1.0
Wordpress Wordpress 1.0.1
Wordpress Wordpress 1.5
Wordpress Wordpress 1.5.1
Wordpress Wordpress 1.5.1.2
Wordpress Wordpress 1.0.2
Wordpress Wordpress 1.2
1 EDB exploit
4
CVSSv2
CVE-2004-1569
Buffer overflow in (1) MusicConverter.exe, (2) playlist.exe, and (3) amp.exe in dBpowerAMP Audio Player 2.0 and dbPowerAmp Music Converter 10.0 allows remote malicious users to cause a denial of service or execute arbitrary code via a .pls or .m3u playlist that contains long File...
Illustrate Dbpoweramp Audio Player 2.0
Illustrate Dbpoweramp Music Converter 10.0
1 EDB exploit
4.3
CVSSv2
CVE-2005-0842
Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.3 allows remote malicious users to inject arbitrary web script or HTML via the (1) _i or (2) _c parameter.
Kayako Esupport 2.3
1 EDB exploit
7.5
CVSSv2
CVE-2005-1200
PHP remote file inclusion vulnerability in main_index.php in AZ Bulletin Board (AZbb) 1.0.07a up to and including 1.0.07c allows remote malicious users to execute arbitrary PHP code by modifying the (1) dir_src or (2) abs_layer parameter to reference a URL on a remote web server ...
Azbb Az Bulletin Board 1.0.07a
Azbb Az Bulletin Board 1.0.07b
Azbb Az Bulletin Board 1.0.07c
1 EDB exploit
7.5
CVSSv2
CVE-2005-1378
SQL injection vulnerability in posting_notes.php in the notes module for phpBB allows remote malicious users to execute arbitrary SQL commands via the p parameter, which is used in the $post_id variable, and other attack vectors.
Oxpus Phpbb Personal Notes Module
1 EDB exploit
7.5
CVSSv2
CVE-2008-5920
The create_anchors function in utils.inc in WebSVN 1.x allows remote malicious users to execute arbitrary PHP code via a crafted username that is processed by the preg_replace function with the eval switch.
Tigris Websvn 1.37
Tigris Websvn 1.34
Tigris Websvn 1.03
Tigris Websvn 1.02
Tigris Websvn 1.60
Tigris Websvn 1.61
Tigris Websvn 1.33
Tigris Websvn 1.32
Tigris Websvn 1.01
Tigris Websvn 1.00
Tigris Websvn 1.62
Tigris Websvn 1.51
Tigris Websvn 1.31a
Tigris Websvn 1.20
Tigris Websvn 1.40
Tigris Websvn 1.39
Tigris Websvn 1.38
Tigris Websvn 1.10
Tigris Websvn 1.04
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »