Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0677
SQL injection vulnerability in blog.php in A-Blog 2 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a news action.
A-blog A-blog 2
1 EDB exploit
NA
CVE-2008-0678
SQL injection vulnerability in index.php in BlogPHP 2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a page action.
Blogphp Blogphp 2.0
1 EDB exploit
NA
CVE-2008-3721
PHP remote file inclusion vulnerability in user_language.php in DeeEmm CMS (DMCMS) 0.7.4 allows remote malicious users to execute arbitrary PHP code via a URL in the language_dir parameter.
Deeemm Dmcms 0.7.4
1 EDB exploit
NA
CVE-2006-5016
Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote malicious users to upload arbitrary files to the /imagebank directory.
E-vision E-vision Cms 1.0
1 EDB exploit
NA
CVE-2007-5122
SQL injection vulnerability in store_info.php in SoftBiz Classifieds PLUS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Softbizscripts Classifieds Plus Script
1 EDB exploit
NA
CVE-2008-1649
Cross-site scripting (XSS) vulnerability in staticpages/easypublish/index.php in EasyNews 4.0 allows remote malicious users to inject arbitrary web script or HTML via the read parameter in an edp_pupublish action.
Myiosoft Easynews 4.0tr
1 EDB exploit
NA
CVE-2008-1650
SQL injection vulnerability in dynamicpages/index.php in EasyNews 4.0 allows remote malicious users to execute arbitrary SQL commands via the read parameter in an edp_Help_Internal_News action.
Myiosoft Easynews 4.0tr
1 EDB exploit
NA
CVE-2008-1714
SQL injection vulnerability in show.php in FaScript FaPhoto 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Fascript Faphoto 1.0
1 EDB exploit
NA
CVE-2009-0831
SQL injection vulnerability in members.php in the Members CV (job) module 1.0 for PHP-Fusion, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the sortby parameter.
Php-fusion Members Cv Module 1.0
1 EDB exploit
NA
CVE-2009-0832
SQL injection vulnerability in items.php in the E-Cart module 1.3 for PHP-Fusion allows remote malicious users to execute arbitrary SQL commands via the CA parameter.
Ausimods E-cart 1.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »