Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1651
Directory traversal vulnerability in admin/login.php in EasyNews 4.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
Myiosoft Easynews 4.0tr
1 EDB exploit
NA
CVE-2008-1639
SQL injection vulnerability in index.php in Neat weblog 0.2 allows remote malicious users to execute arbitrary SQL commands via the articleId parameter in a show action, probably related to the showArticle function in lib/lib_article.include.php.
Neat Web Neat-web 0.2
1 EDB exploit
NA
CVE-2008-1176
Cross-site scripting (XSS) vulnerability in function/sideblock.php in Affiliate Market (affmarket) 0.1 BETA allows remote malicious users to inject arbitrary web script or HTML via the sideblock4 parameter.
Affiliate Market Affiliate Market 0.1 Beta
1 EDB exploit
NA
CVE-2008-1177
SQL injection vulnerability in shop/detail.php in Affiliate Market (affmarket) 0.1 BETA allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Affiliate Market Affiliate Market 0.1 Beta
1 EDB exploit
NA
CVE-2008-0856
Multiple SQL injection vulnerabilities in e-Vision CMS 2.02 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) iframe.php and (2) print.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...
E-vision E-vision Cms 2.02
1 EDB exploit
NA
CVE-2008-0796
SQL injection vulnerability in threads.php in Nuboard 0.5 allows remote malicious users to execute arbitrary SQL commands via the ssid parameter.
Nuboard Nuboard 0.5
1 EDB exploit
NA
CVE-2008-0676
Cross-site scripting (XSS) vulnerability in search.php in A-Blog 2 allows remote malicious users to inject arbitrary web script or HTML via the words parameter.
A-blog A-blog 2
1 EDB exploit
NA
CVE-2008-0677
SQL injection vulnerability in blog.php in A-Blog 2 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a news action.
A-blog A-blog 2
1 EDB exploit
NA
CVE-2008-0678
SQL injection vulnerability in index.php in BlogPHP 2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a page action.
Blogphp Blogphp 2.0
1 EDB exploit
NA
CVE-2008-0679
Cross-site scripting (XSS) vulnerability in index.php in BlogPHP 2.0 allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
Blogphp Blogphp 2.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »