Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zorlu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6914
Unrestricted file upload vulnerability in viewprofile.php in Zeeways ZEEPROPERTY 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a photo in a profile modification, then accessing a related file via a direct reque...
Zeeways Zeeproperty 1.0
1 EDB exploit
NA
CVE-2008-6915
Cross-site scripting (XSS) vulnerability in view_prop_details.php in Zeeways ZEEPROPERTY 1.0 allows remote malicious users to inject arbitrary web script or HTML via the propid parameter.
Zeeways Zeeproperty 1.0
1 EDB exploit
NA
CVE-2008-6928
Unrestricted file upload vulnerability in PHPStore Complete Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in classifieds1/yellow_images/.
Phpstore Complete Classifieds
1 EDB exploit
NA
CVE-2008-6930
Unrestricted file upload vulnerability in PHPStore Real Estate allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in realty/re_images/.
Phpstore Real Estate
1 EDB exploit
NA
CVE-2008-7019
Esqlanelapse 2.6.1 and 2.6.2 allows remote malicious users to bypass authentication and gain privileges via modified (1) enombre and (2) euri cookies.
Esqlanelapse Esqlanelapse 2.6.1
Esqlanelapse Esqlanelapse 2.6.2
1 EDB exploit
NA
CVE-2008-7071
SQL injection vulnerability in authenticate.php in Chipmunk Topsites allows remote malicious users to execute arbitrary SQL commands via the username parameter, related to login.php. NOTE: some of these details are obtained from third party information.
Chipmunk-scripts Chipmunk Topsites -
1 EDB exploit
NA
CVE-2008-7072
Cross-site scripting (XSS) vulnerability in index.php in Chipmunk Topsites allows remote malicious users to inject arbitrary web script or HTML via the start parameter.
Chipmunk-scripts Chipmunk Topsites -
1 EDB exploit
NA
CVE-2008-7073
PHP remote file inclusion vulnerability in lib/action/rss.php in RSS module 0.1 for Pie Web M{a,e}sher, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the lib parameter.
Rssmodule Rss Module 0.1
Ekkaia Pie Web
1 EDB exploit
NA
CVE-2008-7076
Unrestricted file upload vulnerability in user.modify.profile.php in Kalptaru Infotech Ltd. Star Articles 6.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile photo, then accessing it via a direct request to...
Kalptaru Infotech Stararticles 6.0
1 EDB exploit
NA
CVE-2008-7141
Cross-site scripting (XSS) vulnerability in setup.php in @lex Poll 2.1 allows remote malicious users to inject arbitrary web script or HTML via the language_setup parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party info...
Alexphpteam \\@lex Poll 2.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27842
CVE-2024-30657
CVE-2024-4534
hardcoded
SSRF
CVE-2024-21683
CVE-2024-5364
file upload
CVE-2024-5371
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »