Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alstrasoft vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-3795
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft Affiliate Network Pro 7.2 allow remote malicious users to inject arbitrary web script or HTML via (1) the Err parameter in admin/index.php and the (2) firstname and (3) lastname parameters in index.php.
Alstrasoft Affiliate Network Pro 7.2
7.5
CVSSv2
CVE-2005-3796
Direct static code injection vulnerability in admin_options_manage.php in AlstraSoft Affiliate Network Pro 7.2 allows malicious users to execute arbitrary PHP code via the number parameter. NOTE: it is not clear from the original report whether administrator privileges are requir...
Alstrasoft Affiliate Network Pro 7.2
7.5
CVSSv2
CVE-2008-3386
SQL injection vulnerability in album.php in AlstraSoft Video Share Enterprise 4.51 allows remote malicious users to execute arbitrary SQL commands via the UID parameter, a different vector than CVE-2007-4086.
Alstrasoft Video Share Enterprise 4.51
1 EDB exploit
7.5
CVSSv2
CVE-2007-4084
Multiple SQL injection vulnerabilities in AlstraSoft Affiliate Network Pro allow remote malicious users to execute arbitrary SQL commands via (1) the pgmid parameter in an uploadProducts action to merchants/index.php and possibly (2) the rowid parameter to merchants/temp.php.
Alstrasoft Affiliate Network Pro 8.0
1 EDB exploit
4.3
CVSSv2
CVE-2007-4078
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft Text Ads Enterprise allow remote malicious users to inject arbitrary web script or HTML via the (1) r parameter to (a) forgot_uid.php, the (2) query or (3) sk parameter to (b) search_results.php, or (4) the pageId ...
Alstrasoft Text Ads Enterprise 2.1
4.3
CVSSv2
CVE-2007-4079
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft SMS Text Messaging Enterprise allow remote malicious users to inject arbitrary web script or HTML via the (1) domain or (2) q parameter to (a) admin/membersearch.php, or (3) the userid parameter to (b) admin/editus...
Alstrasoft Sms Text Messaging Enterprise
2 EDB exploits
4.3
CVSSv2
CVE-2007-4081
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft Affiliate Network Pro allow remote malicious users to inject arbitrary web script or HTML via vectors in (a) merchants/index.php, including the (1) id or (2) msg parameter in a programedit action; the (3) pgmid par...
Alstrasoft Affiliate Network Pro 8.0
2 EDB exploits
10
CVSSv2
CVE-2008-5649
SQL injection vulnerability in admin/admin.php in AlstraSoft Article Manager Pro 1.6 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Alstrasoft Article Manager Pro 1.6
1 EDB exploit
7.5
CVSSv2
CVE-2006-2565
SQL injection vulnerability in Alstrasoft Article Manager Pro 1.6 allows remote malicious users to execute arbitrary SQL commands via (1) the author_id parameter in profile.php and (2) the aut_id parameter in userarticles.php. NOTE: the aut_id vector can produce resultant path di...
Alstrasoft Article Manager Pro 1.6
5
CVSSv2
CVE-2006-2566
Alstrasoft Article Manager Pro 1.6 allows remote malicious users to obtain sensitive information via (1) a quote character or possibly an invalid value in the action parameter in a request to mrarticles.php or (2) a login QUERY_STRING to admin.php without any additional parameter...
Alstrasoft Article Manager Pro 1.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »