Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
staker vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6952
SQL injection vulnerability in Rss.php in MauryCMS 0.53.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the c parameter.
Cms.maury91 Maurycms 0.53.2
1 EDB exploit
NA
CVE-2008-4483
Directory traversal vulnerability in index.php in Crux Gallery 1.32 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Crux Software Gallery 1.31
Crux Software Gallery 1.30
Crux Software Gallery 1.0
Crux Software Gallery 1.2
Crux Software Gallery 1.1
Crux Software Gallery
Crux Software Gallery 1.32
1 EDB exploit
NA
CVE-2008-4523
SQL injection vulnerability in login.php in IP Reg 0.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Ip Reg Ip Reg 0.1
Ip Reg Ip Reg
Ip Reg Ip Reg 0.2
Ip Reg Ip Reg 0.3
1 EDB exploit
NA
CVE-2008-4603
SQL injection vulnerability in search.php in iGaming CMS 2.0 Alpha 1 allows remote malicious users to execute arbitrary SQL commands via the keywords parameter in a search_games action.
Igaming Cms 2.0
1 EDB exploit
NA
CVE-2009-0728
SQL injection vulnerability in the My_eGallery module for MAXdev MDPro (MD-Pro) and Postnuke allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php.
Maxdev My Egallery -
1 EDB exploit
NA
CVE-2008-6727
Cross-site scripting (XSS) vulnerability in Ultimate PHP Board (UPB) 2.2.2, 2.2.1, and previous versions 2.x versions allows remote malicious users to inject arbitrary web script or HTML via the User-Agent HTTP header.
Myupb Upb 2.2.2
Myupb Upb 2.2.1
Myupb Upb 2.1.1b
Myupb Upb 2.0
1 EDB exploit
NA
CVE-2008-6777
Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a confirm action, the (2) user parameter in a newconfirm action, and (3) reqpwd action to member.php; and the...
Myphp Myphp Forum 1.0
Myphp Myphp Forum 2.0
Myphp Myphp Forum
1 EDB exploit
NA
CVE-2008-6787
SQL injection vulnerability in administrator/index.php in Lizardware CMS 0.6.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user.
Jeremy Powers Lizardware Cms
Jeremy Powers Lizardware Cms 0.6.0
1 EDB exploit
NA
CVE-2008-6805
Multiple SQL injection vulnerabilities in Mic_Blog 0.0.3, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) cat parameter to category.php, the (2) user parameter to login.php, and the (3) site parameter to register.php.
Micgr Mic Blog 0.0.3
1 EDB exploit
NA
CVE-2008-3205
Directory traversal vulnerability in index.php in Easy-Script Wysi Wiki Wyg 1.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the c parameter.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »