Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zorlu vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2008-5562
ASPPortal stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for xportal.mdb.
Aspapps Aspportal Nil
1 EDB exploit
755
VMScore
CVE-2008-5652
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyBookMarker 4.0 allows remote malicious users to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from th...
Myiosoft Easybookmarker 4.0
1 EDB exploit
755
VMScore
CVE-2008-5654
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyCalendar 4.0 allows remote malicious users to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter, a different vector than CVE-2008-1344. NOTE: some ...
Myiosoft Easycalendar 4.0
1 EDB exploit
435
VMScore
CVE-2008-1787
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Poplar Gedcom Viewer 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) text and (2) ul parameters. NOTE: the provenance of this information is unknown; the details are obtained s...
Poplar Gedcom Viewer Poplar Gedcom Viewer 2.0
1 EDB exploit
755
VMScore
CVE-2008-1934
SQL injection vulnerability in commentaires.php in Crazy Goomba 1.2.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Crazy Goomba Crazy Goomba 1.2.1
1 EDB exploit
755
VMScore
CVE-2008-6804
Tribiq CMS 5.0.9a beta allows remote malicious users to bypass authentication and gain administrative access by setting the COOKIE_LAST_ADMIN_USER and COOKIE_LAST_ADMIN_LANG cookies. NOTE: a third party reports that the vendor disputes the existence of this issue
Tribiq Tribiq Cms 5.0.9a
1 EDB exploit
755
VMScore
CVE-2008-6932
Unrestricted file upload vulnerability in submit_file.php in AlstraSoft SendIt Pro allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in send/files/.
Alstrasoft Sendit
1 EDB exploit
755
VMScore
CVE-2009-2640
Multiple SQL injection vulnerabilities in cgi/admin.cgi in Interlogy Profile Manager Basic allow remote malicious users to execute arbitrary SQL commands via a pmadm cookie in (1) an edittemp action or (2) a users action.
Interlogy Profile Manager -
1 EDB exploit
935
VMScore
CVE-2008-0805
Unrestricted file upload vulnerability in image.php in PHPizabi 0.848b C1 HFP1 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension from the event page, then accessing it via a direct request to the file in system/cache/pictures...
Reality Medias Phpizabi 0.848b
1 EDB exploit
755
VMScore
CVE-2008-6491
PHP remote file inclusion vulnerability in connexion.php in PHPGKit 0.9 allows remote malicious users to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party info...
Denis Moinel Phpgkit 0.9
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »