Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alstrasoft vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-2565
SQL injection vulnerability in Alstrasoft Article Manager Pro 1.6 allows remote malicious users to execute arbitrary SQL commands via (1) the author_id parameter in profile.php and (2) the aut_id parameter in userarticles.php. NOTE: the aut_id vector can produce resultant path di...
Alstrasoft Article Manager Pro 1.6
4.3
CVSSv2
CVE-2006-2567
Cross-site scripting (XSS) vulnerability in submit_article.php in Alstrasoft Article Manager Pro 1.6 allows remote malicious users to inject arbitrary web script or HTML when submitting an article, as demonstrated using a javascript URI in a Cascading Style Sheets (CSS) property ...
Alstrasoft Article Manager Pro 1.6
7.5
CVSSv2
CVE-2008-5751
SQL injection vulnerability in index.php in AlstraSoft Web Email Script Enterprise (ESE) allows remote malicious users to execute arbitrary SQL commands via the id parameter in a directory action.
Alstrasoft Web Email Script Enterprise Nil
2 EDB exploits
7.5
CVSSv2
CVE-2008-3954
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote malicious users to execute arbitrary SQL commands via the cat parameter in a showcat action.
Alstrasoft Forum Pay Per Post Exchange
2 EDB exploits
7.5
CVSSv2
CVE-2008-0429
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a forum_catview action.
Alstrasoft Forum Pay Per Post Exchange 2.0
1 EDB exploit
5
CVSSv2
CVE-2008-0440
AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for malicious users to access user accounts.
Alstrasoft Forum Pay Per Post Exchange 2.0
1 EDB exploit
6.8
CVSSv2
CVE-2012-4326
Cross-site request forgery (CSRF) vulnerability in commonsettings.php in AlstraSoft Site Uptime Enterprise, possibly 5.4, allows remote malicious users to hijack the authentication of administrators.
Altrasoft Site Uptime Enterprise 5.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6