Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
website vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-20631
PHP Scripts Mall Website Seller Script 2.0.5 allows full Path Disclosure via a request for an arbitrary image URL such as a .png file.
Website Seller Script Project Website Seller Script 2.0.5
9.8
CVSSv3
CVE-2017-17592
Website Auction Marketplace 2.0.5 has SQL Injection via the search.php cat_id parameter.
Website Auction Marketplace Project Website Auction Marketplace 2.0.5
1 EDB exploit
9.8
CVSSv3
CVE-2022-40087
Simple College Website v1.0 exists to contain an arbitrary file write vulnerability via the function file_put_contents(). This vulnerability allows malicious users to execute arbitrary code via a crafted PHP file.
Simple College Website Project Simple College Website 1.0
5.4
CVSSv3
CVE-2021-25204
Cross-site scripting (XSS) vulnerability in SourceCodester E-Commerce Website v 1.0 allows remote malicious users to inject arbitrary web script or HTM via the subject field to feedback_process.php.
E-commerce Website Project E-commerce Website 1.0
9.8
CVSSv3
CVE-2021-25207
Arbitrary file upload vulnerability in SourceCodester E-Commerce Website v 1.0 allows malicious users to execute arbitrary code via the file upload to prodViewUpdate.php.
E-commerce Website Project E-commerce Website 1.0
8.8
CVSSv3
CVE-2018-6879
PHP Scripts Mall Website Seller Script 2.0.3 uses the client side to enforce validation of an e-mail address, which allows remote malicious users to modify a registered e-mail address by removing the validation code.
Website Seller Script Project Website Seller Script 2.0.3
5.4
CVSSv3
CVE-2018-6900
PHP Scripts Mall Website Broker Script 3.0.6 has XSS via the Last Name field on the My Profile page.
Website Broker Script Project Website Broker Script 3.0.6
9.8
CVSSv3
CVE-2018-6928
PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term.
News Website Script Project News Website Script 2.0.4
7.2
CVSSv3
CVE-2023-5919
A vulnerability was found in SourceCodester Company Website CMS 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /dashboard/createblog of the component Create Blog Page. The manipulation leads to unrestricted upload. The attack m...
Company Website Cms Project Company Website Cms 1.0
6.5
CVSSv3
CVE-2019-9063
PHP Scripts Mall Auction website script 2.0.4 allows parameter tampering of the payment amount.
Auction Website Script Project Auction Website Script 2.0.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »