Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
t0pp8uzz vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-3840
SQL injection vulnerability in referralUrl.php in Traffic Stats allows remote malicious users to execute arbitrary SQL commands via the offset parameter.
Sitetrafficstats Sitetrafficstats
1 EDB exploit
7.5
CVSSv2
CVE-2007-3881
SQL injection vulnerability in index.php in Pictures Rating (Picture Rating) allows remote malicious users to execute arbitrary SQL commands via the msgid parameter.
Pictures Rating Pictures Rating
1 EDB exploit
7.5
CVSSv2
CVE-2007-4054
SQL injection vulnerability in category.php in PHP123 Top Sites allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Php123 Top Sites
1 EDB exploit
7.5
CVSSv2
CVE-2007-4056
SQL injection vulnerability in directory.php in Prozilla Adult Directory allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter in a list action. NOTE: the original report indicated that this was the "photo" SourceForge project (aka Maa...
Adult Directory Adult Directory
1 EDB exploit
6.8
CVSSv2
CVE-2008-1316
SQL injection vulnerability in qtf_ind_search_ov.php in QT-cute QuickTalk Forum 1.6 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Qt-cute Quicktalk Forum 1.3
Qt-cute Quicktalk Forum
Qt-cute Quicktalk Forum 1.4
Qt-cute Quicktalk Forum 1.5.0.3
1 EDB exploit
6.8
CVSSv2
CVE-2008-4877
SQL injection vulnerability in admin.php in WebCards 1.3, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the user parameter. NOTE: some of these details are obtained from third party information.
Mywebcards Webcards
1 EDB exploit
8.5
CVSSv2
CVE-2008-4878
Unrestricted file upload vulnerability in the "Add Image Macro" feature in WebCards 1.3 allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the uploaded file.
Mywebcards Webcards
1 EDB exploit
7.5
CVSSv2
CVE-2008-1971
phShoutBox Final 1.5 and previous versions only checks passwords when specified in $_POST, which allows remote malicious users to gain privileges by setting the (1) phadmin cookie to admin.php, or (2) in 1.4 and previous versions, the ssbadmin cookie to shoutadmin.php.
Phphq Phshoutbox Final
1 EDB exploit
7.5
CVSSv2
CVE-2008-2920
admin/filemanager/ (aka the File Manager) in EZTechhelp EZCMS 1.2 and previous versions does not require authentication, which allows remote malicious users to create, modify, read, and delete files.
Ezcms Eztechhelp Ezcms
1 EDB exploit
7.5
CVSSv2
CVE-2008-2278
SQL injection vulnerability in browseproject.php in Freelance Auction Script 1.0 allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a pdetails action.
Freelanceauction Freelance Auction Script 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »