Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gulftech security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0887
Eval injection vulnerability in sessions.inc in PHP Base Library (PHPLib) prior to 7.4a, when index.php3 from the PHPLib distribution is available on the server, allows remote malicious users to execute arbitrary PHP code by including a base64-encoded representation of the code i...
Phplib Team Phplib 7.4
1 EDB exploit
NA
CVE-2006-1128
Directory traversal vulnerability in the session handling class (GallerySession.class) in Gallery 2 up to 2.0.2 allows remote malicious users to access and delete files by specifying the session in a cookie, which is used in constructing file paths before the session value is san...
Gallery Project Gallery 2.0
Gallery Project Gallery 2.0 Alpha4
Gallery Project Gallery 2.0 Beta1
Gallery Project Gallery 2.0 Beta2
Gallery Project Gallery 2.0.1
Gallery Project Gallery 2.0.2
Gallery Project Gallery 2.0 Beta3
Gallery Project Gallery 2.0 Alpha
Gallery Project Gallery 2.0 Alpha1
Gallery Project Gallery 2.0 Alpha2
Gallery Project Gallery 2.0 Alpha3
1 EDB exploit
NA
CVE-2005-2011
Multiple cross-site scripting (XSS) vulnerabilities in paFAQ 1.0 Beta 4 allow remote malicious users to inject arbitrary web script or HTML, as demonstrated via the id parameter in a Question action.
Php Arena Pafaq 1.0 Beta 4
1 EDB exploit
NA
CVE-2005-2112
Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.0.11 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) order parameter to edit.php or (2) cid parameter to comment_edit.php.
Xoops Xoops 2.0
Xoops Xoops 2.0.5.1
Xoops Xoops 2.0.5.2
Xoops Xoops 2.0.11
Xoops Xoops 2.0.2
Xoops Xoops 2.0.9
Xoops Xoops 2.0.9.2
Xoops Xoops 2.0.3
Xoops Xoops 2.0.4
Xoops Xoops 2.0.5
Xoops Xoops 2.0.9.3
Xoops Xoops 2.0.1
Xoops Xoops 2.0.10
Xoops Xoops 2.0.6
Xoops Xoops 2.0.7
1 EDB exploit
NA
CVE-2004-1385
phpGroupWare 0.9.16.003 and previous versions allows remote malicious users to gain sensitive information via (1) unexpected characters in the session ID such as shell metacharacters, (2) an invalid appname parameter to preferences.php or (3) an invalid menuaction parameter to in...
Phpgroupware Phpgroupware 0.9.16.000
Phpgroupware Phpgroupware 0.9.16.002
Phpgroupware Phpgroupware 0.9.14.003
Phpgroupware Phpgroupware 0.9.14.005
Phpgroupware Phpgroupware 0.9.14.006
Phpgroupware Phpgroupware 0.9.14.007
Phpgroupware Phpgroupware 0.9.12
Phpgroupware Phpgroupware 0.9.13
Phpgroupware Phpgroupware 0.9.14
Phpgroupware Phpgroupware 0.9.16.003
Phpgroupware Phpgroupware 0.9.16 Rc1
1 EDB exploit
NA
CVE-2004-1417
Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and previous versions allows remote malicious users to inject arbitrary web script or HTML via the login parameter.
Psychostats Psychostats 2.2.2
Psychostats Psychostats
Psychostats Psychostats 2.2.1
Psychostats Psychostats 2.0
Psychostats Psychostats 2.0.1
Psychostats Psychostats 2.2
Psychostats Psychostats 2.1
1 EDB exploit
NA
CVE-2004-1420
Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.
Whm Autopilot 2.4.6
Whm Autopilot 2.4.6.5
Whm Autopilot 2.4.5
1 EDB exploit
NA
CVE-2004-1421
Multiple PHP remote file inclusion vulnerabilities (1) step_one.php, (2) step_one_tables.php, (3) step_two_tables.php in WHM AutoPilot 2.4.6.5 and previous versions allow remote malicious users to execute arbitrary PHP code by modifying the server_inc parameter to reference a URL...
Whm Whm Autopilot 2.4.6
Whm Whm Autopilot 2.4.6.5
Whm Whm Autopilot 2.4.5
1 EDB exploit
NA
CVE-2008-3701
SQL injection vulnerability in staff/index.php in Kayako SupportSuite 3.20.02 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the customfieldlinkid parameter in a delcflink action.
Kayako Supportsuite 3.10.00
Kayako Supportsuite 3.11.01
Kayako Supportsuite
Kayako Supportsuite 3.10.02
Kayako Supportsuite 3.11.00
1 EDB exploit
NA
CVE-2008-3768
Multiple SQL injection vulnerabilities in class.ajax.php in Turnkey Web Tools SunShop Shopping Cart prior to 4.1.5 allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter in an edit_registry action to index.php, (2) a vector involving the check_ema...
Turnkeywebtools Sunshop Shopping Cart 4.0.5
Turnkeywebtools Sunshop Shopping Cart 4.0.6
Turnkeywebtools Sunshop Shopping Cart 4.1.3
Turnkeywebtools Sunshop Shopping Cart
Turnkeywebtools Sunshop Shopping Cart 4.0.1
Turnkeywebtools Sunshop Shopping Cart 4.0.2
Turnkeywebtools Sunshop Shopping Cart 4.0.9
Turnkeywebtools Sunshop Shopping Cart 4.1.0
Turnkeywebtools Sunshop Shopping Cart 4.0.0
Turnkeywebtools Sunshop Shopping Cart 4.0.7
Turnkeywebtools Sunshop Shopping Cart 4.0.8
Turnkeywebtools Sunshop Shopping Cart 4.0.3
Turnkeywebtools Sunshop Shopping Cart 4.0.4
Turnkeywebtools Sunshop Shopping Cart 4.1.1
Turnkeywebtools Sunshop Shopping Cart 4.1.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »