Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sirgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3508
Multiple directory traversal vulnerabilities in MUJE CMS 1.0.4.34 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) _class parameter to admin.php and the (2) url parameter to install/install.php; and allow remote authenticated...
Fcgphilipp Mujecms 1.0.4.34
1 EDB exploit
NA
CVE-2009-3511
Multiple PHP remote file inclusion vulnerabilities in justVisual 1.2 allow remote malicious users to execute arbitrary PHP code via a URL in the fs_jVroot parameter to (1) sites/site/pages/index.php, (2) sites/test/pages/contact.php, (3) system/pageTemplate.php, and (4) system/ut...
Fh54 Justvisual 1.2
1 EDB exploit
NA
CVE-2009-3514
Multiple SQL injection vulnerabilities in d.net CMS allow remote malicious users to execute arbitrary SQL commands via (1) the page parameter to index.php; and allow remote authenticated administrators to execute arbitrary SQL commands via the (2) edit_id and (3) _p parameter in ...
Marcin Manek D.net Cms
1 EDB exploit
NA
CVE-2009-3515
Directory traversal vulnerability in dnet_admin/index.php in d.net CMS allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the type parameter.
Marcin Manek D.net Cms
1 EDB exploit
NA
CVE-2009-3714
Cross-site scripting (XSS) vulnerability in admin_login.php in MCshoutbox 1.1 allows remote malicious users to inject arbitrary web script or HTML via the loginerror parameter.
Maniacomputer Mcshoutbox 1.1
1 EDB exploit
NA
CVE-2009-3715
Multiple SQL injection vulnerabilities in scr_login.php in MCshoutbox 1.1, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Maniacomputer Mcshoutbox 1.1
1 EDB exploit
NA
CVE-2008-4526
Multiple directory traversal vulnerabilities in CCMS 3.1 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the skin parameter to (1) index.php, (2) forums.php, (3) admin.php, (4) header.php, (5) pages/story.php and (6) pages/poll.php.
Customcms Ccms 3.1
1 EDB exploit
NA
CVE-2008-3593
Directory traversal vulnerability in index.php in SyzygyCMS 0.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Syzygycms Syzygycms 0.3
1 EDB exploit
NA
CVE-2009-2111
Static code injection vulnerability in add_reg.php in DB Top Sites 1.0 allows remote malicious users to inject arbitrary PHP code via a crafted (1) url and (2) location parameter.
Jnmsolutions Db Top Sites 1.0
1 EDB exploit
NA
CVE-2009-2129
Cross-site request forgery (CSRF) vulnerability in login.php in Elvin 1.2.0 allows remote malicious users to hijack the authentication of arbitrary users via a logout action.
Elvinbts Elvinbts 1.2.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »