Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-5999
SQL injection vulnerability in product_desc.php in Softbiz Auctions Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Softbizscripts Softbiz Auctions Script
1 EDB exploit
7.5
CVSSv2
CVE-2009-0832
SQL injection vulnerability in items.php in the E-Cart module 1.3 for PHP-Fusion allows remote malicious users to execute arbitrary SQL commands via the CA parameter.
Ausimods E-cart 1.3
1 EDB exploit
6.8
CVSSv2
CVE-2008-1714
SQL injection vulnerability in show.php in FaScript FaPhoto 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Fascript Faphoto 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-3556
Multiple SQL injection vulnerabilities in index.php in Battle.net Clan Script 1.5.2 allow remote malicious users to execute arbitrary SQL commands via the (1) showmember parameter in a members action and the (2) thread parameter in a board action. NOTE: vector 1 might be the same...
Haudenschilt Battlenet Clan Script 1.5.2
1 EDB exploit
2.6
CVSSv2
CVE-2008-3574
Multiple cross-site scripting (XSS) vulnerabilities in Pluck 4.5.2, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) lang_footer parameter to (a) data/inc/footer.php; the (2) pluck_version, (3) lang_install22, (4) t...
Pluck Pluck 4.5.2
1 EDB exploit
7.5
CVSSv2
CVE-2008-3720
SQL injection vulnerability in index.php in DeeEmm CMS (DMCMS) 0.7.4 allows remote malicious users to execute arbitrary SQL commands via the page parameter. NOTE: the id vector is already covered by CVE-2007-5679.
Deeemm Dmcms 0.7.4
1 EDB exploit
7.5
CVSSv2
CVE-2008-3721
PHP remote file inclusion vulnerability in user_language.php in DeeEmm CMS (DMCMS) 0.7.4 allows remote malicious users to execute arbitrary PHP code via a URL in the language_dir parameter.
Deeemm Dmcms 0.7.4
1 EDB exploit
4.3
CVSSv2
CVE-2008-6988
Multiple cross-site scripting (XSS) vulnerabilities in Easy Photo Gallery (aka Ezphotogallery) 2.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) galleryid parameter to gallery.php, and the (2) size or (3) imageid parameters to show.php.
Ezphotogallery Ezphotogallery 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-7005
include/modules/top/1-random_quote.php in Minb Is Not a Blog (minb) 0.1.0 allows remote malicious users to execute arbitrary PHP code via the quotes_to_edit parameter. NOTE: this issue has been reported as an unrestricted file upload by some sources, but that is a potential conse...
Minb Minb Is Not A Blog 0.1.0
1 EDB exploit
5
CVSSv2
CVE-2006-5016
Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote malicious users to upload arbitrary files to the /imagebank directory.
E-vision E-vision Cms 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »