Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
injector5 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-6225
SQL injection vulnerability in info.php in Mole Group Airline Ticket Sale Script allows remote malicious users to execute arbitrary SQL commands via the flight parameter. NOTE: the vendor has disputed this issue, stating "crazy hackers and so named Security companies [spread...
Mole-group Airline Ticket Sale Script -
1 EDB exploit
755
VMScore
CVE-2009-0379
SQL injection vulnerability in the Prince Clan Chess Club (com_pcchess) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the game_id parameter in a showgame action to index.php, a different vector than CVE-2008-0761.
Joomla Com Pcchess
1 EDB exploit
755
VMScore
CVE-2009-0421
SQL injection vulnerability in the Eventing (com_eventing) 1.6.x component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter to index.php.
Joomla Com Eventing 1.6
Joomla Com Eventing 1.6.1
Joomla Com Eventing 1.6.2
Joomla Com Eventing 1.6.3
Joomla Com Eventing 1.6.4
Joomla Com Eventing 1.6.5
1 EDB exploit
755
VMScore
CVE-2008-5174
SQL injection vulnerability in joke.php in Jokes Complete Website 2.1.3 allows remote malicious users to execute arbitrary SQL commands via the jokeid parameter.
Easysitenetwork Jokes Complete Website 2.1.3
1 EDB exploit
355
VMScore
CVE-2008-4083
Cross-site scripting (XSS) vulnerability in the Bookmarks plugin in Brim 2.0 allows remote authenticated users to inject arbitrary web script or HTML via the name parameter in an addItemPost action to index.php. NOTE: some of these details are obtained from third party informatio...
Brim-project Brim 2.0.0
1 EDB exploit
755
VMScore
CVE-2008-4039
SQL injection vulnerability in index.php in Spice Classifieds allows remote malicious users to execute arbitrary SQL commands via the cat_path parameter.
Spice Classifieds Spice Classifieds
1 EDB exploit
755
VMScore
CVE-2009-1736
SQL injection vulnerability in the GridSupport (GS) Ticket System (com_gsticketsystem) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a viewCategory action to index.php.
Joomla Com Gsticketsystem
1 EDB exploit
655
VMScore
CVE-2009-1655
Multiple SQL injection vulnerabilities in myaccount.php in Easy Scripts Answer and Question Script allow remote authenticated users to execute arbitrary SQL commands via the (1) user name (userid parameter) and (2) password.
Easy-scripts Answer And Question Script
1 EDB exploit
685
VMScore
CVE-2009-1663
Unrestricted file upload vulnerability in myaccount.php in Easy Scripts Answer and Question Script allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the uploads/[username...
Easy-scripts Answer And Question Script
1 EDB exploit
755
VMScore
CVE-2009-1664
myaccount.php in Easy Scripts Answer and Question Script does not verify the original password before changing passwords, which allows remote malicious users to change the password of other users and gain privileges via modified userid, txtpassword, and txtRpassword parameters.
Easy-scripts Answer And Question Script
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »