Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
t0pp8uzz vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2007-6393
SQL injection vulnerability in albums.php in Ace Image Hosting Script allows remote authenticated users to execute arbitrary SQL commands via the id parameter in editalbum mode.
Ace Image Hosting Script Ace Image Hosting Script 0
1 EDB exploit
8.5
CVSSv2
CVE-2008-4878
Unrestricted file upload vulnerability in the "Add Image Macro" feature in WebCards 1.3 allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the uploaded file.
Mywebcards Webcards
1 EDB exploit
6.8
CVSSv2
CVE-2008-6806
Unrestricted file upload vulnerability in includes/imageupload.php in 7Shop 1.1 and previous versions allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/artikel/.
7-shop 7shop
7-shop 7shop 1.0
7-shop 7shop 0.9 Beta
1 EDB exploit
7.5
CVSSv2
CVE-2008-1870
SQL injection vulnerability in getdata.php in PIGMy-SQL 1.4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Geek247 Pigmy-sql 1.4
Geek247 Pigmy-sql
1 EDB exploit
7.5
CVSSv2
CVE-2008-1875
SQL injection vulnerability in index.php in Terong PHP Photo Gallery (aka Advanced Web Photo Gallery) 1.0 allows remote malicious users to execute arbitrary SQL commands via the photo_id parameter.
Terong Advanced Web Photo Gallery 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-2298
Admin.php in Web Slider 0.6 allows remote malicious users to bypass authentication and gain privileges by setting the admin cookie to 1.
Sourceforge Web Slider 0.6
1 EDB exploit
7.5
CVSSv2
CVE-2008-2353
Directory traversal vulnerability in admin.php in GNU/Gallery 1.1.1.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the show parameter.
Gnugallery Gnugallery
1 EDB exploit
7.5
CVSSv2
CVE-2008-0429
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a forum_catview action.
Alstrasoft Forum Pay Per Post Exchange 2.0
1 EDB exploit
5
CVSSv2
CVE-2008-0440
AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for malicious users to access user accounts.
Alstrasoft Forum Pay Per Post Exchange 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6081
SQL injection vulnerability in contact.php in Simple Customer 1.2 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Simplecustomer Simple Customer 1.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »