Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gulftech security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3764
Eval injection vulnerability in globalsoff.php in Turnkey PHP Live Helper 2.0.1 and previous versions allows remote malicious users to execute arbitrary PHP code via the test parameter, and probably arbitrary parameters, to chat.php.
Turnkeywebtools Php Live Helper 2.0
Turnkeywebtools Php Live Helper
1 EDB exploit
NA
CVE-2004-1727
BadBlue 2.5 allows remote malicious users to cause a denial of service (refuse HTTP connections) via a large number of connections from the same IP address.
Working Resources Inc. Badblue 2.50
1 EDB exploit
NA
CVE-2008-6985
Multiple SQL injection vulnerabilities in includes/classes/shopping_cart.php in Zen Cart 1.2.0 up to and including 1.3.8a, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the id parameter when (1) adding or (2) updating the sh...
Zen-cart Zen Cart 1.3.8a
Zen-cart Zen Cart 1.3.2
Zen-cart Zen Cart 1.2.4.1
Zen-cart Zen Cart 1.2.1d
Zen-cart Zen Cart 1.2.3d
Zen-cart Zen Cart 1.3.6
Zen-cart Zen Cart 1.2.1 Patch1
Zen-cart Zen Cart 1.2.6d
Zen-cart Zen Cart 1.3.7
Zen-cart Zen Cart 1.3.8
Zen-cart Zen Cart 1.2.0d
Zen-cart Zen Cart 1.2.4d
Zen-cart Zen Cart 1.2.5d
Zen-cart Zen Cart 1.3
Zen-cart Zen Cart 1.2.2d
Zen-cart Zen Cart 1.3.5
1 EDB exploit
NA
CVE-2008-5090
Electron Inc. Advanced Electron Forum prior to 1.0.7 allows remote malicious users to execute arbitrary PHP code via PHP code embedded in bbcode in the email parameter, which is processed by the preg_replace function with the eval switch.
Anelectron Advanced Electron Forum
Anelectron Advanced Electron Forum 1.0.2
Anelectron Advanced Electron Forum 1.0.5
Anelectron Advanced Electron Forum 1.0.3
Anelectron Advanced Electron Forum 1.0.1
Anelectron Advanced Electron Forum 1.0.4
1 EDB exploit
NA
CVE-2008-3701
SQL injection vulnerability in staff/index.php in Kayako SupportSuite 3.20.02 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the customfieldlinkid parameter in a delcflink action.
Kayako Supportsuite 3.10.00
Kayako Supportsuite 3.11.01
Kayako Supportsuite
Kayako Supportsuite 3.11.00
Kayako Supportsuite 3.10.02
1 EDB exploit
NA
CVE-2008-3758
Multiple cross-site scripting (XSS) vulnerabilities in Lussumo Vanilla 1.1.4 and previous versions (1) allow remote malicious users to inject arbitrary web script or HTML via the NewPassword parameter to people.php, and allow remote authenticated users to inject arbitrary web scr...
Lussumo Vanilla 1.1.2
Lussumo Vanilla 1.0.2
Lussumo Vanilla 1.1
Lussumo Vanilla
Lussumo Vanilla 1.1.3
Lussumo Vanilla 1.0.1
Lussumo Vanilla 1
Lussumo Vanilla 1.0.3
Lussumo Vanilla 0.9.2
Lussumo Vanilla 1.1.1
1 EDB exploit
NA
CVE-2008-3763
Variable overwrite vulnerability in libsecure.php in Turnkey PHP Live Helper 2.0.1 and previous versions, when register_globals is enabled, allows remote malicious users to overwrite arbitrary variables related to the db config file. NOTE: this can be leveraged for code injection...
Turnkeywebtools Php Live Helper 2.0
Turnkeywebtools Php Live Helper
1 EDB exploit
NA
CVE-2008-3845
Multiple SQL injection vulnerabilities in Crafty Syntax Live Help (CSLH) 2.14.6 and previous versions allow remote malicious users to execute arbitrary SQL commands via the department parameter to (1) is_xmlhttp.php and (2) is_flush.php.
Craftysyntax Crafty Syntax Live Help 2.11.4
Craftysyntax Crafty Syntax Live Help 2.14.5
Craftysyntax Crafty Syntax Live Help 2.0
Craftysyntax Crafty Syntax Live Help 2.12.5
Craftysyntax Crafty Syntax Live Help 2.14.4
Craftysyntax Crafty Syntax Live Help 2.11.2
Craftysyntax Crafty Syntax Live Help 2.11.7
Craftysyntax Crafty Syntax Live Help 2.11.1
Craftysyntax Crafty Syntax Live Help 1.0
Craftysyntax Crafty Syntax Live Help 1.6
Craftysyntax Crafty Syntax Live Help 2.12.9
Craftysyntax Crafty Syntax Live Help 2.12.6
Craftysyntax Crafty Syntax Live Help 2.12.4
Craftysyntax Crafty Syntax Live Help 1.3
Craftysyntax Crafty Syntax Live Help 2.11.0
Craftysyntax Crafty Syntax Live Help 2.12.1
Craftysyntax Crafty Syntax Live Help 1.5
Craftysyntax Crafty Syntax Live Help 2.10.1
Craftysyntax Crafty Syntax Live Help 2.12.2
Craftysyntax Crafty Syntax Live Help 2.12.3
Craftysyntax Crafty Syntax Live Help 2.11.5
Craftysyntax Crafty Syntax Live Help 2.11.6
1 EDB exploit
NA
CVE-2004-2566
Multiple cross-site scripting (XSS) vulnerabilities in LiveWorld products, possibly including (1) LiveForum, (2) LiveQ&A, (3) LiveChat, and (4) LiveFocusGroup, allow remote malicious users to inject arbitrary web script or HTML via the q parameter in (a) search.jsp, (b) findc...
Liveworld Liveq And A
Liveworld Liveforum
Liveworld Livechat
Liveworld Livefocusgroup
1 EDB exploit
NA
CVE-2006-4215
PHP remote file inclusion vulnerability in index.php in Zen Cart 1.3.0.2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the autoLoadConfig[999][0][loadFile] parameter.
Zen Cart Zen Cart
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »