Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g4n0k vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6752
adminlogin/password.php in the Twitter Clone (TClone) plugin for ReVou Micro Blogging does not verify the original password before changing passwords, which allows remote malicious users to change the administrator's password and gain privileges via a direct request with mod...
Revou Revou
1 EDB exploit
NA
CVE-2009-4675
admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote malicious users to change the admin password via an unspecified form submission.
Mole-group Gastro Portal (restaurant Directory) Script -
1 EDB exploit
NA
CVE-2006-6819
AlstraSoft Web Host Directory stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a backup database via a direct request for admin/backup/db.
Alstrasoft Webhost Directory
1 EDB exploit
NA
CVE-2008-5219
The password change feature (admin/cp.php) in VideoScript 4.0.1.50 and previous versions does not check for administrative authentication and does not require knowledge of the original password, which allows remote malicious users to change the admin account password via modified...
Videoscript Videoscript
1 EDB exploit
NA
CVE-2008-5221
The account_save action in admin/userinfo.php in wPortfolio 0.3 and previous versions does not require authentication and does not require knowledge of the original password, which allows remote malicious users to change the admin account password via modified password and passwo...
Wportfolio Wportfolio
Wportfolio Wportfolio 0.2
1 EDB exploit
NA
CVE-2008-6535
admin/settings.php in PayPal eStores allows remote malicious users to bypass intended access restrictions and change the administrative password via a direct request with a modified NewAdmin parameter.
Paypalestores Paypal Estores -
1 EDB exploit
NA
CVE-2009-2003
Ascad Networks Password Protector SD 1.3.1 allows remote malicious users to bypass authentication and gain administrative access by setting the (1) c7portal and (2) cookname cookies to "admin."
Ascadnetworks Password Protector Sd 1.3.1
2 EDB exploits
NA
CVE-2008-5650
SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote malicious users to execute arbitrary SQL commands via the pwd parameter.
Alstrasoft Webhost Directory Nil
2 EDB exploits
NA
CVE-2008-5655
Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 allow remote malicious users to execute arbitrary SQL commands via the (1) delete_folder and (2) delete_link parameters to unspecified vectors, possibly to (a) plugins/bookmarker/bookmarker_backend.php or (b) a...
Myiosoft Easybookmarker 4.0
2 EDB exploits
NA
CVE-2009-1642
Multiple stack-based buffer overflows in Mini-stream ASX to MP3 Converter 3.0.0.7 allow remote malicious users to execute arbitrary code via (1) a long rtsp URL in a .ram file and (2) a long string in the HREF attribute of a REF element in a .asx file. NOTE: the latter was also s...
Mini-stream Mini-stream To Mp3 Converter 3.0.0.7
6 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »