Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cwh vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2102
SQL injection vulnerability in view_item.php in ClipBucket 2.7 RC3 (2.7.0.4.v2929-rc3) allows remote malicious users to execute arbitrary SQL commands via the item parameter.
Clip-bucket Clipbucket 2.7
1 EDB exploit
NA
CVE-2008-2647
SQL injection vulnerability in admin/journal_change_mask.inc.php in meBiblio 0.4.7 allows remote malicious users to execute arbitrary SQL commands via the JID parameter.
Mebiblio Mebiblio 0.4.7
1 EDB exploit
NA
CVE-2008-2839
Cross-site scripting (XSS) vulnerability in the search module in Traindepot 0.1 allows remote malicious users to inject arbitrary web script or HTML via the query parameter to index.php.
Traindepot Traindepot 0.1
1 EDB exploit
NA
CVE-2008-2907
SQL injection vulnerability in admin/index.php in WebChamado 1.1, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the eml parameter.
Webchamado Webchamado 1.1
1 EDB exploit
NA
CVE-2008-2961
Multiple directory traversal vulnerabilities in view/index.php in CMS Mini 0.2.2 allow remote malicious users to read arbitrary local files via a .. (dot dot) in the (1) path and (2) p parameter.
Cmsmini Cms Mini 0.2.2
1 EDB exploit
NA
CVE-2008-2398
Cross-site scripting (XSS) vulnerability in index.php in AppServ Open Project 2.5.10 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the appservlang parameter.
Appserv Open Project Appserv 1.4.0
Appserv Open Project Appserv 1.5.0
Appserv Open Project Appserv 2.2.0
Appserv Open Project Appserv 2.3.0
Appserv Open Project Appserv 2.4.5
Appserv Open Project Appserv 2.4.6
Appserv Open Project Appserv 2.5.4
Appserv Open Project Appserv 2.5.4a
Appserv Open Project Appserv 1.8.0
Appserv Open Project Appserv 1.9.0
Appserv Open Project Appserv 2.4.2
Appserv Open Project Appserv 2.4.3
Appserv Open Project Appserv 2.4.9
Appserv Open Project Appserv 2.5
Appserv Open Project Appserv 2.5.1
Appserv Open Project Appserv 2.5.7
Appserv Open Project Appserv 2.5.8
Appserv Open Project Appserv 1.6.0
Appserv Open Project Appserv 1.7.0
Appserv Open Project Appserv 2.4
Appserv Open Project Appserv 2.4.1
Appserv Open Project Appserv 2.4.7
1 EDB exploit
NA
CVE-2008-2458
Cross-site scripting (XSS) vulnerability in index.php in Starsgames Control Panel 4.6.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the st parameter.
4shared Starsgames Control Panel
1 EDB exploit
NA
CVE-2008-2644
Multiple cross-site scripting (XSS) vulnerabilities in SMEWeb 1.4b and 1.4f allow remote malicious users to inject arbitrary web script or HTML via the (1) data parameter to catalog.php, the (2) keyword parameter to search.php, the (3) page parameter to bb.php, and the (4) new_s ...
Smeweb Smeweb 1.4b
Smeweb Smeweb 1.4f
1 EDB exploit
NA
CVE-2008-2648
Unrestricted file upload vulnerability in upload/uploader.html in meBiblio 0.4.7 allows remote malicious users to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the files/ directory.
Mebiblio Mebiblio 0.4.7
1 EDB exploit
NA
CVE-2008-2678
Multiple SQL injection vulnerabilities in Telephone Directory 2008, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) code parameter in a confirm_data action to edit1.php and the (2) id parameter to view_more.php.
Telephone Telephone Directory 2008
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »