Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joss vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2915
Multiple SQL injection vulnerabilities in jobseekers/JobSearch.php (aka the search module) in Pre Job Board allow remote malicious users to execute arbitrary SQL commands via the (1) position or (2) kw parameter.
Preprojects Pre Job Board
1 EDB exploit
NA
CVE-2007-6157
Cross-site scripting (XSS) vulnerability in index.php in SimpleGallery 0.1.3 allows remote malicious users to inject arbitrary web script or HTML via the album parameter.
Simplegallery Simplegallery 0.1.3
1 EDB exploit
NA
CVE-2007-6158
Multiple SQL injection vulnerabilities in caladmin.inc.php in Proverbs Web Calendar 1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) loginname (aka Username) and (2) loginpass (aka Password) parameters to caladmin.php.
Proverbs Proverbs Web Calendar 1.1
1 EDB exploit
NA
CVE-2007-6162
Cross-site scripting (XSS) vulnerability in index.php in FMDeluxe 2.1.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter in a category action.
Wsdeluxe Fmdeluxe 2.1
1 EDB exploit
NA
CVE-2008-1936
SQL injection vulnerability in index.php in Classifieds Caffe allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter in an add action. NOTE: this issue might be site-specific.
Classifieds Caffe Classifieds Caffe
1 EDB exploit
NA
CVE-2008-5004
SQL injection vulnerability in genscode.php in myWebland Bloggie Lite 0.0.2 beta allows remote malicious users to execute arbitrary SQL commands via a crafted cookie.
Mywebland Bloggie Lite 0.0.2
1 EDB exploit
NA
CVE-2008-6183
Multiple directory traversal vulnerabilities in index.php in My PHP Indexer 1.0 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) d and (2) f parameters.
Myphpindexer My Php Indexer 1.0
1 EDB exploit
NA
CVE-2009-2401
Cross-site scripting (XSS) vulnerability in PHPEcho CMS 2.0-rc3 allows remote malicious users to inject arbitrary web script or HTML via a forum post.
Phpecho Cms Phpecho Cms 2.0-rc3
1 EDB exploit
NA
CVE-2009-1483
Unrestricted file upload vulnerability in upload-file.php in Adam Patterson Studio Lounge Address Book 2.5, as reachable from index2.php, allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct reque...
Studiolounge Address Book 2.5
1 EDB exploit
NA
CVE-2007-6565
Multiple SQL injection vulnerabilities in Blakord Portal 1.3.A Beta and previous versions allow remote malicious users to execute arbitrary SQL commands via the id parameter to an arbitrary component.
Blakord Blakord Portal
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »