Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
t0pp8uzz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3434
index.php in Pharmacy System 2 and previous versions allows remote malicious users to obtain sensitive information via a ' (quote) character in the page parameter, which reveals the table prefix in an error message.
Netart Media Pharmacy System
1 EDB exploit
NA
CVE-2007-3448
Cross-site scripting (XSS) vulnerability in index.php in BugMall Shopping Cart 2.5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the msgs parameter. NOTE: 4.0.2 and other versions might also be affected.
Bugmall Shopping Cart
1 EDB exploit
NA
CVE-2007-3515
SQL injection vulnerability in view_event.php in TotalCalendar 2.402 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Sweetphp Totalcalendar
1 EDB exploit
NA
CVE-2007-3518
SQL injection vulnerability in msg.php in HispaH YouTube Clone Script (youtubeclone) allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Hispah Youtube Clone Script
1 EDB exploit
NA
CVE-2007-3520
SQL injection vulnerability in process.php in Easybe 1-2-3 Music Store allows remote malicious users to execute arbitrary SQL commands via the CategoryID parameter.
Easybe 1-2-3 Music Store
1 EDB exploit
NA
CVE-2007-3687
SQL injection vulnerability in inferno.php in the Inferno Technologies RPG Inferno 2.4 and previous versions, a vBulletin module, allows remote authenticated malicious users to execute arbitrary SQL commands via the id parameter in a ScanMember do action.
Infernotechnologies Rpg Inferno
1 EDB exploit
NA
CVE-2007-3810
SQL injection vulnerability in index.php in Realtor 747 allows remote malicious users to execute arbitrary SQL commands via the categoryid parameter.
It747 Realtor 747
1 EDB exploit
NA
CVE-2007-3981
SQL injection vulnerability in index.php in WSN Links Basic Edition allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a displaycat action.
Wsn Links Wsn Links
1 EDB exploit
NA
CVE-2007-4258
SQL injection vulnerability in directory.php in Prozilla Pub Site Directory allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Prozilla Prozilla Pub Site Directory
1 EDB exploit
NA
CVE-2007-5992
SQL injection vulnerability in index.php in datecomm Social Networking Script (aka Myspace Clone Script) allows remote malicious users to execute arbitrary SQL commands via the seid parameter in a viewcat s action on the forums page.
Datecomm Social Networking Script -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »