Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lostmon vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3727
SQL injection vulnerability in debug/query_results.jsp in Idetix Software Systems Revize CMS allows remote malicious users to execute arbitrary SQL commands via the query parameter.
Revize Cms Revize Cms
1 EDB exploit
NA
CVE-2005-3728
Idetix Software Systems Revize CMS stores conf/revize.xml under the web document root with insufficient access control, which allows remote malicious users to obtain sensitive configuration information.
Revize Cms Revize Cms
1 EDB exploit
NA
CVE-2005-3748
SQL injection vulnerability in the Search module in Tru-Zone Nuke ET 3.2, and possibly earlier versions, allows remote malicious users to execute arbitrary SQL commands via the query parameter.
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
1 EDB exploit
NA
CVE-2008-3723
Directory traversal vulnerability in index.php in PHPizabi 0.848b C1 HFP3 allows remote authenticated administrators to read arbitrary files via (1) a .. (dot dot), (2) a URL, or possibly (3) a full pathname in the id parameter in an admin.templates.edittemplate action. NOTE: som...
Phpizabi Phpizabi 0.848b
1 EDB exploit
NA
CVE-2007-6669
Cross-site scripting (XSS) vulnerability in search.php in PHCDownload 1.1.0 allows remote malicious users to inject arbitrary web script or HTML via the string parameter.
Phpcredo Phcdownload 1.1
1 EDB exploit
NA
CVE-2007-6670
SQL injection vulnerability in search.php in PHCDownload 1.1.0 allows remote malicious users to execute arbitrary SQL commands via the string parameter.
Phpcredo Phcdownload 1.1
1 EDB exploit
NA
CVE-2008-4432
Cross-site scripting (XSS) vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops allows remote malicious users to inject arbitrary web script or HTML via the itemsxpag parameter.
Rmsoft Minishop Module 1.0
1 EDB exploit
NA
CVE-2006-4295
Cross-site scripting (XSS) vulnerability in ascan_6.asp in Panda ActiveScan 5.53.00 allows remote malicious users to inject arbitrary web script or HTML via the email parameter.
Panda Panda Activescan 5.53.00
1 EDB exploit
NA
CVE-2006-0163
SQL injection vulnerability in the search module (modules/Search/index.php) of PHPNuke EV 7.7 -R1 allows remote malicious users to execute arbitrary SQL commands via the query parameter, which is used by the search field. NOTE: This is a different vulnerability than CVE-2005-3792...
Francisco Burzi Php-nuke Ev 7.7 R1
1 EDB exploit
NA
CVE-2005-0606
Cross-site scripting (XSS) vulnerability in settings.inc.php for CubeCart 2.0.0 up to and including 2.0.5, as used in multiple PHP files, allows remote malicious users to inject arbitrary HTML or web script via the (1) cat_id, (2) PHPSESSID, (3) view_doc, (4) product, (5) session...
Devellion Cubecart 2.0.3
Devellion Cubecart 2.0.1
Devellion Cubecart 2.0.2
Devellion Cubecart 2.0.0
Devellion Cubecart 2.0.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »