Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gulftech security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3563
Multiple SQL injection vulnerabilities in Plogger 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the checked array parameter to plog-download.php in an album action and (2) unspecified parameters to plog-remote.php, and (3) allow ...
Plogger Plogger 1.0
Plogger Plogger 2.0
Plogger Plogger 2.1
Plogger Plogger
1 EDB exploit
NA
CVE-2008-3758
Multiple cross-site scripting (XSS) vulnerabilities in Lussumo Vanilla 1.1.4 and previous versions (1) allow remote malicious users to inject arbitrary web script or HTML via the NewPassword parameter to people.php, and allow remote authenticated users to inject arbitrary web scr...
Lussumo Vanilla 0.9.2
Lussumo Vanilla 1.1.2
Lussumo Vanilla 1.1.3
Lussumo Vanilla 1.1
Lussumo Vanilla 1.1.1
Lussumo Vanilla 1.0.2
Lussumo Vanilla 1.0.3
Lussumo Vanilla 1
Lussumo Vanilla 1.0.1
Lussumo Vanilla
1 EDB exploit
NA
CVE-2005-0270
Multiple cross-site scripting (XSS) vulnerabilities in ReviewPost PHP Pro prior to 2.84 allow remote malicious users to inject arbitrary web script or HTML via the (1) si parameter to showcat.php, (2) cat or (3) page parameter to showproduct.php, or (4) report parameter to report...
Photopost Reviewpost Php Pro 2.5.1
Photopost Reviewpost Php Pro
Photopost Reviewpost Php Pro 1.0.2
Photopost Reviewpost Php Pro 2.5
1 EDB exploit
NA
CVE-2005-0272
ReviewPost PHP Pro prior to 2.84 allows remote malicious users to upload and execute arbitrary PHP files by posting a review file with multiple extensions, which bypasses the intended restrictions.
Photopost Reviewpost Php Pro 2.5
Photopost Reviewpost Php Pro
Photopost Reviewpost Php Pro 1.0.2
1 EDB exploit
NA
CVE-2005-0274
Multiple cross-site scripting (XSS) vulnerabilities in showgallery.php in PhotoPost prior to 4.86 allow remote malicious users to inject arbitrary web script or HTML via the (1) cat, (2) si, (3) page, or (4) ppuser parameters.
Photopost Photopost Php Pro
1 EDB exploit
NA
CVE-2005-1378
SQL injection vulnerability in posting_notes.php in the notes module for phpBB allows remote malicious users to execute arbitrary SQL commands via the p parameter, which is used in the $post_id variable, and other attack vectors.
Oxpus Phpbb Personal Notes Module
1 EDB exploit
NA
CVE-2006-4019
Dynamic variable evaluation vulnerability in compose.php in SquirrelMail 1.4.0 to 1.4.7 allows remote malicious users to overwrite arbitrary program variables and read or write the attachments and preferences of other users.
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.3 R3
Squirrelmail Squirrelmail 1.4.7
Squirrelmail Squirrelmail 1.4 Rc1
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.4.4 Rc1
Squirrelmail Squirrelmail 1.4.5
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.6 Rc1
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail 1.4.4
Squirrelmail Squirrelmail 1.44
1 EDB exploit
NA
CVE-2004-1412
Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.x allows remote malicious users to inject arbitrary web script or HTML via the searchm parameter.
Kayako Esupport 2.2
Kayako Esupport 2.2.5
Kayako Esupport 2.1.2
Kayako Esupport 2.1.8
Kayako Esupport 2.3
1 EDB exploit
NA
CVE-2004-1413
Multiple SQL injection vulnerabilities in Kayako eSupport 2.x allow remote malicious users to execute arbitrary SQL commands via the (1) subcat, (2) rate, (3) questiondetails, (4) ticketkey22, (5) email22 parameters to index.php, or (6) the e-mail field of the Forgot Key feature.
Kayako Esupport 2.1.2
Kayako Esupport 2.1.8
Kayako Esupport 2.3
Kayako Esupport 2.2
Kayako Esupport 2.2.5
1 EDB exploit
NA
CVE-2004-1417
Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and previous versions allows remote malicious users to inject arbitrary web script or HTML via the login parameter.
Psychostats Psychostats 2.2.2
Psychostats Psychostats
Psychostats Psychostats 2.2.1
Psychostats Psychostats 2.0
Psychostats Psychostats 2.0.1
Psychostats Psychostats 2.2
Psychostats Psychostats 2.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »