Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
staker vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4345
SQL injection vulnerability in download.php in WebPortal CMS 0.7.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the aid parameter.
Webportal Webportal Cms 0.6.0
Webportal Webportal Cms 0.6 Beta
Webportal Webportal Cms
Webportal Webportal Cms 0.7.3
1 EDB exploit
NA
CVE-2008-4483
Directory traversal vulnerability in index.php in Crux Gallery 1.32 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Crux Software Gallery 1.31
Crux Software Gallery 1.30
Crux Software Gallery 1.0
Crux Software Gallery 1.2
Crux Software Gallery 1.1
Crux Software Gallery
Crux Software Gallery 1.32
1 EDB exploit
NA
CVE-2008-4523
SQL injection vulnerability in login.php in IP Reg 0.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Ip Reg Ip Reg 0.1
Ip Reg Ip Reg
Ip Reg Ip Reg 0.2
Ip Reg Ip Reg 0.3
1 EDB exploit
NA
CVE-2008-4524
SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Adaptcms Adaptcms 1.3
1 EDB exploit
NA
CVE-2006-0123
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote malicious users to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.
Adn Forum Adn Forum 1.0
Adn Forum Adn Forum 1.0b
1 EDB exploit
NA
CVE-2008-4887
SQL injection vulnerability in index.php in NetRisk 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter in a (1) profile page (profile.php) or (2) game page (game.php). NOTE: some of these details are obtained from third ...
Netrisk Netrisk 1.9.7
Netrisk Netrisk
1 EDB exploit
NA
CVE-2008-4888
Cross-site scripting (XSS) vulnerability in error.php in NetRisk 2.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the error parameter to index.php. NOTE: some of these details are obtained from third party information.
Netrisk Netrisk 1.9.7
Netrisk Netrisk
1 EDB exploit
NA
CVE-2008-7069
All Club CMS (ACCMS) 0.0.2 and previous versions stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain database configuration information, including credentials, via a direct request to accms.dat.
Paul Arbogast Accms 0.0.1c
Paul Arbogast Accms 0.0.1a
Paul Arbogast Accms
Paul Arbogast Accms 0.0.1h
Paul Arbogast Accms 0.0.1f
Paul Arbogast Accms 0.0.1g
Paul Arbogast Accms 0.0.1d
Paul Arbogast Accms 0.0.1e
1 EDB exploit
NA
CVE-2008-6078
SQL injection vulnerability in open.php in the Private Messaging (com_privmsg) component for Limbo CMS allows remote malicious users to execute arbitrary SQL commands via the id parameter in a pms action to index.php.
Limbo Cms Com Privmsg
1 EDB exploit
NA
CVE-2008-6146
SQL injection vulnerability in pm.php in DeluxeBB 1.2 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via a delete##### parameter in a Delete action, a different vector than CVE-2005-2989.
Deluxebb Deluxebb
Deluxebb Deluxebb 1.09
Deluxebb Deluxebb 1.07
Deluxebb Deluxebb 1.08
Deluxebb Deluxebb 1.1
Deluxebb Deluxebb 1.0
Deluxebb Deluxebb 1.05
Deluxebb Deluxebb 1.06
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »