Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cwh underground vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5953
Directory traversal vulnerability in KTP Computer Customer Database (KTPCCD) CMS, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the p parameter to the default URI.
Ktp Computer Customer Database Ktp Computer Customer Database Nil
1 EDB exploit
NA
CVE-2015-2102
SQL injection vulnerability in view_item.php in ClipBucket 2.7 RC3 (2.7.0.4.v2929-rc3) allows remote malicious users to execute arbitrary SQL commands via the item parameter.
Clip-bucket Clipbucket 2.7
1 EDB exploit
NA
CVE-2008-5267
SQL injection vulnerability in answer.php in Experts 1.0.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the question_id parameter.
Experts Experts 1.0.0
1 EDB exploit
NA
CVE-2008-5628
SQL injection vulnerability in index.php in CMS little 0.0.1 allows remote malicious users to execute arbitrary SQL commands via the term parameter.
Little Cms Little Cms 0.0.1
1 EDB exploit
NA
CVE-2008-5639
Directory traversal vulnerability in index.php in TxtBlog 1.0 Alpha allows remote malicious users to read arbitrary files via a .. (dot dot) in the m parameter.
Txtblogcms Txtblog 1.0
1 EDB exploit
NA
CVE-2008-5069
SQL injection vulnerability in go.php in Panuwat PromoteWeb MySQL, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Deeserver Panuwat Promoteweb Mysql
1 EDB exploit
NA
CVE-2008-5201
Directory traversal vulnerability in index.php in OTManager CMS 24a allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the conteudo parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC ...
Otmanager Otmanager Cms 24a
1 EDB exploit
NA
CVE-2008-5202
Cross-site scripting (XSS) vulnerability in index.php in OTManager CMS 24a allows remote malicious users to inject arbitrary web script or HTML via the conteudo parameter.
Otmanager Otmanager Cms 24a
1 EDB exploit
NA
CVE-2008-5265
Directory traversal vulnerability in index.php in TNT Forum 0.9.4, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the modulo parameter.
Tntforum Tnt Forum 0.9.4
1 EDB exploit
NA
CVE-2008-5271
Cross-site scripting (XSS) vulnerability in index.php in Fred Stuurman SyndeoCMS 2.6.0 allows remote malicious users to inject arbitrary web script or HTML via the section parameter.
Syndeocms Syndeocms 2.6.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »