Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
t0pp8uzz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1727
KnowledgeQuest 2.5 and 2.6 does not require authentication for access to admincheck.php, which allows remote malicious users to create arbitrary admin accounts.
Myknowledgequest Knowledgequest 2.5
Myknowledgequest Knowledgequest 2.6
1 EDB exploit
NA
CVE-2008-1788
SQL injection vulnerability in directory.php in Prozilla Entertainers 1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cat parameter. NOTE: some of these details are obtained from third party information.
Prozilla Entertainers 1.1
1 EDB exploit
NA
CVE-2008-1790
Unrestricted file upload vulnerability in iScripts SocialWare allows remote authenticated administrators to upload arbitrary files via a crafted logo file in the "Manage Settings" functionality. NOTE: remote exploitation is facilitated by a separate SQL injection vulner...
Iscripts Socialware
1 EDB exploit
NA
CVE-2008-1863
SQL injection vulnerability in view_reviews.php in Prozilla Cheat Script (aka Cheats) 2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Prozilla Cheats 2.0
1 EDB exploit
NA
CVE-2008-1871
SQL injection vulnerability in links.php in Scriptsagent.com Links Directory 1.1 allows remote authenticated users to execute arbitrary SQL commands via the cat_id parameter in a list action.
Scriptsagent Links Directory 1.1
1 EDB exploit
NA
CVE-2008-1872
SQL injection vulnerability in home.news.php in Comdev News Publisher 4.1.2 allows remote malicious users to execute arbitrary SQL commands via the arcmonth parameter. NOTE: some of these details are obtained from third party information.
Comdev Comdev News Publisher 4.1.2
1 EDB exploit
NA
CVE-2008-1954
SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_id parameter.
Webcalendar Web Calendar Pro 4.0
Webcalendar Web Calendar Pro
1 EDB exploit
NA
CVE-2008-1971
phShoutBox Final 1.5 and previous versions only checks passwords when specified in $_POST, which allows remote malicious users to gain privileges by setting the (1) phadmin cookie to admin.php, or (2) in 1.4 and previous versions, the ssbadmin cookie to shoutadmin.php.
Phphq Phshoutbox Final
1 EDB exploit
NA
CVE-2008-2114
SQL injection vulnerability in emall/search.php in Pre Shopping Mall 1.1 allows remote malicious users to execute arbitrary SQL commands via the search parameter.
Preprojects Pre Shopping Mall 1.1
1 EDB exploit
NA
CVE-2008-0429
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a forum_catview action.
Alstrasoft Forum Pay Per Post Exchange 2.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »