Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ez vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-4365
Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in ScriptsEz Ez Blog 1.0 allow remote malicious users to hijack the authentication of administrators for requests that (1) add a blog via the add_blog action, (2) approve a comment via the approve_comment act...
Scriptsez Ez Blog 1.0
2 EDB exploits
4.3
CVSSv2
CVE-2009-0762
Cross-site scripting (XSS) vulnerability in ScriptsEz Ez PHP Comment allows remote malicious users to inject arbitrary web script or HTML via the name parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Scriptsez Ez Php Comment -
5
CVSSv2
CVE-2002-1818
ezhttpbench.php in eZ httpbench 1.1 allows remote malicious users to read arbitrary files via a full pathname in the AnalyseSite parameter.
Ez Systems Httpbench 1.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-6246
SQL injection vulnerability in category.php in Scripts For Sites (SFS) EZ Webring allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Scripts-for-sites Ez Webring -
1 EDB exploit
5.8
CVSSv2
CVE-2008-4754
SQL injection vulnerability in forum.php in Scripts for Sites (SFS) Ez Forum allows remote malicious users to execute arbitrary SQL commands via the forum parameter.
Scripts-for-sites Ez Forum
1 EDB exploit
NA
CVE-2023-2521
A vulnerability was found in NEXTU NEXT-7004N 3.0.1. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formFilter of the component POST Request Handler. The manipulation of the argument url with the input <svg onload=alert(1337)> lea...
Ez-net Next-7004n Firmware 3.0.1
7.5
CVSSv2
CVE-2008-6778
SQL injection vulnerability in viewfaqs.php in Scripts for Sites (SFS) EZ Auction allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Scripts-for-sites Ez Auction
1 EDB exploit
7.5
CVSSv2
CVE-2008-6780
SQL injection vulnerability in directory.php in Scripts for Sites (SFS) SFS EZ Affiliate allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter in a list action.
Scripts-for-sites Ez Affiliate
1 EDB exploit
7.5
CVSSv2
CVE-2008-6867
SQL injection vulnerability in content.php in Scripts For Sites (SFS) EZ Career allows remote malicious users to execute arbitrary SQL commands via the topic parameter.
Scripts For Sites Ez Career
1 EDB exploit
NA
CVE-2015-10071
A vulnerability was found in gitter-badger ezpublish-modern-legacy. It has been rated as problematic. This issue affects some unknown processing of the file kernel/user/forgotpassword.php. The manipulation leads to weak password recovery. The complexity of an attack is rather hig...
Gitter Ez Publish Modern Legacy
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »