Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gulftech security vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-6394
SQL injection vulnerability in core/user.php in CS-Cart 1.3.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cs_cookies[customer_user_id] cookie parameter.
Cs-cart Cs-cart 1.3.2
Cs-cart Cs-cart 1.3.3
Cs-cart Cs-cart 1.3.0
Cs-cart Cs-cart 1.2
Cs-cart Cs-cart
Cs-cart Cs-cart 1.1
1 EDB exploit
435
VMScore
CVE-2005-0270
Multiple cross-site scripting (XSS) vulnerabilities in ReviewPost PHP Pro prior to 2.84 allow remote malicious users to inject arbitrary web script or HTML via the (1) si parameter to showcat.php, (2) cat or (3) page parameter to showproduct.php, or (4) report parameter to report...
Photopost Reviewpost Php Pro 2.5.1
Photopost Reviewpost Php Pro 1.0.2
Photopost Reviewpost Php Pro
Photopost Reviewpost Php Pro 2.5
1 EDB exploit
755
VMScore
CVE-2005-0273
Multiple SQL injection vulnerabilities in showgallery.php in PhotoPost prior to 4.86 allow remote malicious users to execute arbitrary SQL commands via the (1) cat or (2) ppuser parameter.
Photopost Photopost Php Pro
1 EDB exploit
755
VMScore
CVE-2008-5920
The create_anchors function in utils.inc in WebSVN 1.x allows remote malicious users to execute arbitrary PHP code via a crafted username that is processed by the preg_replace function with the eval switch.
Tigris Websvn 1.20
Tigris Websvn 1.34
Tigris Websvn 1.02
Tigris Websvn 1.03
Tigris Websvn 1.37
Tigris Websvn 1.51
Tigris Websvn 1.39
Tigris Websvn 1.10
Tigris Websvn 1.32
Tigris Websvn 1.60
Tigris Websvn 1.00
Tigris Websvn 1.38
Tigris Websvn 1.01
Tigris Websvn 1.40
Tigris Websvn 1.62
Tigris Websvn 1.31a
Tigris Websvn 1.04
Tigris Websvn 1.61
Tigris Websvn 1.33
1 EDB exploit
435
VMScore
CVE-2006-4525
Cross-site scripting (XSS) vulnerability in CubeCart 3.0.12 and previous versions, when register_globals is enabled, allows remote malicious users to inject arbitrary web script or HTML via the links array.
Devellion Cubecart
1 EDB exploit
435
VMScore
CVE-2006-0650
Cross-site scripting (XSS) vulnerability in cpaint2.inc.php in the CPAINT library prior to 2.0.3, as used in multiple scripts, allows remote malicious users to inject arbitrary web script or HTML via the cpaint_response_type parameter, which is displayed in a resulting error mess...
Cpaint Cpaint 1.3 Sp
Cpaint Cpaint 2.0.1
Cpaint Cpaint 1.01
Cpaint Cpaint 1.2
Cpaint Cpaint 1.0
Cpaint Cpaint 2.0.2
Cpaint Cpaint 1.3
Cpaint Cpaint 1.3 Sp1
Cpaint Cpaint 2.0.0
Cpaint Cpaint Pre1.0
1 EDB exploit
755
VMScore
CVE-2006-0887
Eval injection vulnerability in sessions.inc in PHP Base Library (PHPLib) prior to 7.4a, when index.php3 from the PHPLib distribution is available on the server, allows remote malicious users to execute arbitrary PHP code by including a base64-encoded representation of the code i...
Phplib Team Phplib 7.4
1 EDB exploit
755
VMScore
CVE-2004-1383
Multiple SQL injection vulnerabilities in phpGroupWare 0.9.16.003 and previous versions allow remote malicious users to execute arbitrary SQL statements via the (1) order, (2) project_id, (3) pro_main, or (4) hours_id parameters to index.php or (5) ticket_id to viewticket_details...
Phpgroupware Phpgroupware 0.9.14.003
Phpgroupware Phpgroupware 0.9.13
Phpgroupware Phpgroupware 0.9.14.005
Phpgroupware Phpgroupware 0.9.14.006
Phpgroupware Phpgroupware 0.9.12
Phpgroupware Phpgroupware 0.9.14
Phpgroupware Phpgroupware 0.9.16.000
Phpgroupware Phpgroupware 0.9.16.003
Phpgroupware Phpgroupware 0.9.16 Rc1
Phpgroupware Phpgroupware 0.9.16.002
Phpgroupware Phpgroupware 0.9.14.007
1 EDB exploit
505
VMScore
CVE-2004-1385
phpGroupWare 0.9.16.003 and previous versions allows remote malicious users to gain sensitive information via (1) unexpected characters in the session ID such as shell metacharacters, (2) an invalid appname parameter to preferences.php or (3) an invalid menuaction parameter to in...
Phpgroupware Phpgroupware 0.9.14.003
Phpgroupware Phpgroupware 0.9.13
Phpgroupware Phpgroupware 0.9.14.005
Phpgroupware Phpgroupware 0.9.14.006
Phpgroupware Phpgroupware 0.9.12
Phpgroupware Phpgroupware 0.9.14
Phpgroupware Phpgroupware 0.9.16.000
Phpgroupware Phpgroupware 0.9.16.003
Phpgroupware Phpgroupware 0.9.16 Rc1
Phpgroupware Phpgroupware 0.9.16.002
Phpgroupware Phpgroupware 0.9.14.007
1 EDB exploit
435
VMScore
CVE-2004-1417
Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and previous versions allows remote malicious users to inject arbitrary web script or HTML via the login parameter.
Psychostats Psychostats 2.2.2
Psychostats Psychostats
Psychostats Psychostats 2.2.1
Psychostats Psychostats 2.0
Psychostats Psychostats 2.0.1
Psychostats Psychostats 2.2
Psychostats Psychostats 2.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »