Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r0t vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3884
Multiple SQL injection vulnerabilities in the search action in Zainu 2.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) term and (2) start parameters to index.php.
Zainu Zainu 2.0
1 EDB exploit
NA
CVE-2005-3908
Cross-site scripting (XSS) vulnerability in search.php in GhostScripter Amazon Shop 5.0.0, and other versions prior to 5.0.2, allows remote malicious users to inject web script or HTML via the query parameter.
Amazon Shop Amazon Shop
1 EDB exploit
NA
CVE-2005-3909
SQL injection vulnerability in merchants/index.php in Post Affiliate Pro 2.0.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the sortorder parameter.
Post Affiliate Pro Post Affiliate Pro
1 EDB exploit
NA
CVE-2005-3932
SQL injection vulnerability in okiraku.php in O-Kiraku Nikki 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the day_id parameter.
O-kiraku Nikki O-kiraku Nikki 1.3
1 EDB exploit
NA
CVE-2005-3935
SQL injection vulnerability in SocketKB 1.1.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the (1) node and (2) art_id parameters.
Socketkb Socketkb
1 EDB exploit
NA
CVE-2005-3940
SQL injection vulnerability in ringmaker.php in Orca Ringmaker 2.3c and previous versions allows remote malicious users to execute arbitrary SQL commands via the start parameter.
Greywyvern Orca Ringmaker
1 EDB exploit
NA
CVE-2005-3941
SQL injection vulnerability in blog.php in Orca Blog 1.3b and previous versions allows remote malicious users to execute arbitrary SQL commands via the msg parameter.
Greywyvern Orca Blog
1 EDB exploit
NA
CVE-2005-3942
SQL injection vulnerability in knowledgebase-control.php in Orca Knowledgebase 2.1b and previous versions allows remote malicious users to execute arbitrary SQL commands via the qid parameter.
Greywyvern Orca Knowledgebase
1 EDB exploit
NA
CVE-2005-3956
Multiple SQL injection vulnerabilities in index.php in DMANews 0.904 and 0.910 allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a comments action and the (2) sortorder and (3) display_num parameters in a news_list action.
Dmanews Dmanews 0.91
Dmanews Dmanews 0.904
1 EDB exploit
NA
CVE-2005-3944
SQL injection vulnerability in survey.php in ilyav Survey System 1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the SURVEY_ID parameter.
Faq System Faq System
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »