Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
injector5 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6348
Multiple SQL injection vulnerabilities in DevelopItEasy Photo Gallery 1.2 allow remote malicious users to execute arbitrary SQL commands via the (1) cat_id parameter to gallery_category.php, (2) photo_id parameter to gallery_photo.php, and the (3) user_name and (4) user_pass para...
Developiteasy Photo Gallery 1.2
1 EDB exploit
8.5
CVSSv2
CVE-2008-6367
Unrestricted file upload vulnerability in Photos/create_album.php in Social Groupie allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in Member_images/.
Socialgroupie Social Groupie -
1 EDB exploit
6.5
CVSSv2
CVE-2008-6518
Unrestricted file upload vulnerability in the profile feature in VidiScript allows registered remote authenticated users to execute arbitrary code by uploading a PHP file as an Avatar, then accessing the avatar via a direct request.
Vidiscript Vidiscript -
1 EDB exploit
4.3
CVSSv2
CVE-2009-1654
Cross-site scripting (XSS) vulnerability in questiondetail.php in Easy Scripts Answer and Question Script allows remote malicious users to inject arbitrary web script or HTML via the questionid parameter.
Easy-scripts Answer And Question Script
1 EDB exploit
6.5
CVSSv2
CVE-2009-1655
Multiple SQL injection vulnerabilities in myaccount.php in Easy Scripts Answer and Question Script allow remote authenticated users to execute arbitrary SQL commands via the (1) user name (userid parameter) and (2) password.
Easy-scripts Answer And Question Script
1 EDB exploit
7.5
CVSSv2
CVE-2009-1736
SQL injection vulnerability in the GridSupport (GS) Ticket System (com_gsticketsystem) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a viewCategory action to index.php.
Joomla Com Gsticketsystem
1 EDB exploit
6
CVSSv2
CVE-2009-1750
Unrestricted file upload vulnerability in VidSharePro allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors.
Omnisoftsol Vidsharepro
1 EDB exploit
7.5
CVSSv2
CVE-2008-2113
SQL injection vulnerability in annuaire.php in PHPEasyData 1.5.4 allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter.
Phpeasydata Phpeasydata 1.5.4
1 EDB exploit
7.5
CVSSv2
CVE-2008-5174
SQL injection vulnerability in joke.php in Jokes Complete Website 2.1.3 allows remote malicious users to execute arbitrary SQL commands via the jokeid parameter.
Easysitenetwork Jokes Complete Website 2.1.3
1 EDB exploit
7.5
CVSSv2
CVE-2008-4373
SQL injection vulnerability in job_seeker/applynow.php in AvailScript Job Portal Script allows remote malicious users to execute arbitrary SQL commands via the jid parameter.
Availscript Availscript Jobs Portal Script
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »