Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rush vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2028
SQL injection vulnerability in index.php for MercuryBoard 1.1.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the User-Agent HTTP header.
Mercuryboard Mercuryboard Message Board 1.1.4
1 EDB exploit
NA
CVE-2003-1216
SQL injection vulnerability in search.php for phpBB 2.0.6 and previous versions allows remote malicious users to execute arbitrary SQL and gain privileges via the search_id parameter.
Phpbb Group Phpbb 1.4.0
Phpbb Group Phpbb 1.4.1
Phpbb Group Phpbb 2.0.4
Phpbb Group Phpbb 2.0.5
Phpbb Group Phpbb 1.4.2
Phpbb Group Phpbb 1.4.4
Phpbb Group Phpbb 2.0.6
Phpbb Group Phpbb 2.0 Beta1
Phpbb Group Phpbb 1.2.0
Phpbb Group Phpbb 1.2.1
Phpbb Group Phpbb 2.0.2
Phpbb Group Phpbb 2.0.3
Phpbb Group Phpbb 2.0 Rc3
Phpbb Group Phpbb 2.0 Rc4
Phpbb Group Phpbb 1.0.0
Phpbb Group Phpbb 2.0.0
Phpbb Group Phpbb 2.0.1
Phpbb Group Phpbb 2.0 Rc1
Phpbb Group Phpbb 2.0 Rc2
1 EDB exploit
NA
CVE-2004-1531
SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 up to and including 2.0.2 allows remote malicious users to execute arbitrary SQL commands via the qpid parameter.
Invision Power Services Invision Board 2.0.1
Invision Power Services Invision Board 2.0.2
Invision Power Services Invision Board 2.0
1 EDB exploit
NA
CVE-2005-4792
SQL injection vulnerability in index.php in Appalachian State University phpWebSite 0.10.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the module parameter. NOTE: the provenance of this information is unknown; the details are obtained...
Phpwebsite Phpwebsite 0.10
Phpwebsite Phpwebsite 0.7.3
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.9.1
Phpwebsite Phpwebsite
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.0
Phpwebsite Phpwebsite 0.9.2
Phpwebsite Phpwebsite 0.9.3.4
1 EDB exploit
NA
CVE-2005-4619
SQL injection vulnerability in index.php in phpoutsourcing Zorum Forum 3.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the rollid parameter in the showhtmllist method.
Phpoutsourcing Zorum 3.2
Phpoutsourcing Zorum 3.3
Phpoutsourcing Zorum 3.4
Phpoutsourcing Zorum 3.5
Phpoutsourcing Zorum 3.0
Phpoutsourcing Zorum 3.1
1 EDB exploit
NA
CVE-2005-4633
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-4619. Reason: This candidate is a duplicate of CVE-2005-4619. Notes: All CVE users should reference CVE-2005-4619 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
NA
CVE-2005-2113
SQL injection vulnerability in the loginUser function in the XMLRPC server in XOOPS 2.0.11 and previous versions allows remote malicious users to execute arbitrary SQL commands and bypass authentication via crafted values in an XML file, as demonstrated using the blogger.getPost ...
Xoops Xoops 2.0
Xoops Xoops 2.0.1
Xoops Xoops 2.0.5.1
Xoops Xoops 2.0.5.2
Xoops Xoops 2.0.4
Xoops Xoops 2.0.5
Xoops Xoops 2.0.10
Xoops Xoops 2.0.11
Xoops Xoops 2.0.6
Xoops Xoops 2.0.7
Xoops Xoops 2.0.2
Xoops Xoops 2.0.3
Xoops Xoops 2.0.9
Xoops Xoops 2.0.9.2
Xoops Xoops 2.0.9.3
2 EDB exploits
NA
CVE-2006-7071
SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote malicious users to execute arbitrary SQL commands via the CLIENT_IP parameter.
Invision Power Services Invision Power Board 2.1.2
Invision Power Services Invision Power Board 2.1.3
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.1.1
Invision Power Services Invision Power Board 2.1.4
Invision Power Services Invision Power Board 2.1.5
2 EDB exploits
NA
CVE-2005-0688
Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote malicious users to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" v...
Microsoft Windows Xp
Microsoft Windows 2003 Server R2
2 EDB exploits
NA
CVE-2004-1315
viewtopic.php in phpBB 2.x prior to 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote malicious users to execute arbitrary PHP code by double-encoding the highlight value so that special characters are insert...
Phpbb Group Phpbb 1.2.0
Phpbb Group Phpbb 1.2.1
Phpbb Group Phpbb 2.0.10
Phpbb Group Phpbb 2.0.2
Phpbb Group Phpbb 2.0.3
Phpbb Group Phpbb 2.0.7a
Phpbb Group Phpbb 2.0.8
Phpbb Group Phpbb 2.0 Rc4
Phpbb Group Phpbb
Phpbb Group Phpbb 1.4.2
Phpbb Group Phpbb 1.4.4
Phpbb Group Phpbb 2.0.6
Phpbb Group Phpbb 2.0.6c
Phpbb Group Phpbb 2.0 Beta1
Phpbb Group Phpbb 2.0 Rc1
Phpbb Group Phpbb 1.4.0
Phpbb Group Phpbb 1.4.1
Phpbb Group Phpbb 2.0.4
Phpbb Group Phpbb 2.0.5
Phpbb Group Phpbb 2.0.8a
Phpbb Group Phpbb 2.0.9
Phpbb Group Phpbb 1.0.0
4 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5