Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yenh4cker vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2451
Multiple SQL injection vulnerabilities in index.php in MIM:InfiniX 1.2.003 and possibly earlier versions allow remote malicious users to execute arbitrary SQL commands via the (1) month and (2) year parameters in a calendar action, or (3) a search term in the search form.
Mim.infinix Infinix
1 EDB exploit
NA
CVE-2009-1843
Multiple SQL injection vulnerabilities in Flash Quiz Beta 2 allow remote malicious users to execute arbitrary SQL commands via the (1) quiz parameter to (a) num_questions.php, (b) answers.php, (c) high_score.php, (d) high_score_web.php, (e) results_table_web.php, and (f) question...
Glenn Mcgurrin Flash Quiz Beta2
1 EDB exploit
NA
CVE-2009-2037
Multiple directory traversal vulnerabilities in Online Grades & Attendance 3.2.5 and previous versions, and possibly 3.2.6, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) GLOBALS[SKIN] ...
Onlinegrades Online Grades 3.2.4
Onlinegrades Online Grades
1 EDB exploit
NA
CVE-2009-2573
Multiple SQL injection vulnerabilities in MiniTwitter 0.2 beta, when magic_quotes_gpc is disabled, allow remote authenticated users to execute arbitrary SQL commands via the (1) user parameter to (a) index.php and (b) rss.php.
Bioscripts Minitwitter 0.2 Beta
1 EDB exploit
NA
CVE-2009-4936
Multiple SQL injection vulnerabilities in Small Pirate (SPirate) 2.1 allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to the default URI in an rss .xml action, or the id parameter to (2) pag1.php, (3) pag1-guest.php, (4) rss-comment_post.php...
Spirate Small Pirate 2.1
1 EDB exploit
NA
CVE-2009-2010
Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.9 and previous versions allow remote authenticated users to execute arbitrary SQL commands via the (1) thread parameter to messageboard.php, (2) member parameter to profile.php, (3) pid paramet...
Haudenschilt Family Connections Cms 0.8
Haudenschilt Family Connections Cms 0.5
Haudenschilt Family Connections Cms 1.8.2
Haudenschilt Family Connections Cms 1.8.1
Haudenschilt Family Connections Cms 0.1.2
Haudenschilt Family Connections Cms
Haudenschilt Family Connections Cms 0.1.1
Haudenschilt Family Connections Cms 0.9
Haudenschilt Family Connections Cms 0.6
Haudenschilt Family Connections Cms 1.4
1 EDB exploit
NA
CVE-2009-2113
Multiple SQL injection vulnerabilities in FretsWeb 1.2 allow remote malicious users to execute arbitrary SQL commands via the (1) name parameter to player.php and the (2) hash parameter to song.php.
Fretsweb Project Fretsweb 1.2
1 EDB exploit
NA
CVE-2009-1408
Cross-site scripting (XSS) vulnerability in webSPELL 4.2.0c allows remote malicious users to inject arbitrary web script or HTML allows remote malicious users to inject arbitrary web script or HTML via Javascript events such as onmouseover in nested BBcode tags, as demonstrated u...
Webspell Webspell 4.2.0c
1 EDB exploit
NA
CVE-2008-2565
Multiple SQL injection vulnerabilities in PHP Address Book 3.1.5 and previous versions allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) view.php and (2) edit.php. NOTE: it was later reported that 4.0.x is also affected.
Php-address Book Php-address Book 2.0
Php-address Book Php-address Book 3.4.8
Php-address Book Php-address Book 2.2
Php-address Book Php-address Book 3.4.4
Php-address Book Php-address Book 2.4
Php-address Book Php-address Book 3.4.1
Php-address Book Php-address Book 3.1
Php-address Book Php-address Book 3.1.2
Php-address Book Php-address Book 1.2
Php-address Book Php-address Book 3.4.2
Php-address Book Php-address Book 3.3.17
Php-address Book Php-address Book
Php-address Book Php-address Book 3.4.7
Php-address Book Php-address Book 2.1
Php-address Book Php-address Book 3.1.5
Php-address Book Php-address Book 3.1.1
Php-address Book Php-address Book 3.1.3
Php-address Book Php-address Book 3.0
Php-address Book Php-address Book 3.3.16
Php-address Book Php-address Book 3.1.4
Php-address Book Php-address Book 3.3.18
Php-address Book Php-address Book 3.4.3
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4