Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pouya_server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0248
Cross-site scripting (XSS) vulnerability in rankup.asp in Katy Whitton RankEm allows remote malicious users to inject arbitrary web script or HTML via the siteID parameter.
Katywhitton Rankem
1 EDB exploit
NA
CVE-2008-6887
SQL injection vulnerability in detailad.asp in Pre Classified Listings 1.0 allows remote malicious users to execute arbitrary SQL commands via the siteid parameter.
Preprojects Pre Classified Listings 1.0
1 EDB exploit
NA
CVE-2009-0760
Team Board 1.x and 2.x stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing credentials via a direct request for data/team.mdb.
Team5 Team Board 1.0.0
Team5 Team Board 2.0.0
1 EDB exploit
NA
CVE-2009-0761
Cross-site scripting (XSS) vulnerability in online.asp in Team Board 1.x allows remote malicious users to inject arbitrary web script or HTML via the lookname parameter.
Team5.team Board 1.0.4
Team5.team Board 1.0.1
Team5.team Board 1.0.3
Team5.team Board 1.0.5
Team5.team Board 1.0.2
Team5.team Board 1.0
1 EDB exploit
NA
CVE-2009-0338
Cross-site scripting (XSS) vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote malicious users to inject arbitrary web script or HTML via the CategoryID parameter in a refer action.
Dmxready Blog Manager Nil
1 EDB exploit
NA
CVE-2008-6785
Unrestricted file upload vulnerability in Mini File Host 1.5 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory, as demonstrated by creating a nam...
Galaxyscripts Mini File Host 1.5
2 EDB exploits
NA
CVE-2008-5978
Multiple SQL injection vulnerabilities in Ocean12 Mailing List Manager Gold allow remote malicious users to execute arbitrary SQL commands via the Email parameter to (1) default.asp and (2) s_edit.asp.
Ocean12 Technologies Mailing List Manager Nil
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5