Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0637
Directory traversal vulnerability in zd_numer.php in Galeria Zdjec 3.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the galeria parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Serv...
Galeria Zdjec Galeria Zdjec
1 EDB exploit
NA
CVE-2007-0663
SQL injection vulnerability in index.php in Eclectic Designs CascadianFAQ 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the qid parameter, a different vector than CVE-2007-0631. NOTE: The provenance of this information is unknown; t...
Eclectic Designs Cascadianfaq
Eclectic Designs Cascadianfaq 4.1
1 EDB exploit
NA
CVE-2007-0676
SQL injection vulnerability in faq.php in ExoPHPDesk 1.2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Exo Exophpdesk 1.2
Exo Exophpdesk 1.2.1
1 EDB exploit
9.8
CVSSv3
CVE-2007-0681
profile.php in ExtCalendar 2 and previous versions allows remote malicious users to change the passwords of arbitrary users without providing the original password, and possibly perform other unauthorized actions, via modified values to register.php.
Extcalendar Project Extcalendar
1 EDB exploit
NA
CVE-2007-0765
SQL injection vulnerability in news.php in dB Masters Curium CMS 1.03 and previous versions allows remote malicious users to execute arbitrary SQL commands via the c_id parameter.
Db Masters Multimedia Curium Cms
1 EDB exploit
NA
CVE-2007-0786
SQL injection vulnerability in view.php in Noname Media Photo Galerie Standard 1.1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Noname Media Photo Galerie Standard 1.1
Noname Media Photo Galerie Standard
1 EDB exploit
NA
CVE-2006-7119
PHP remote file inclusion vulnerability in kernel/system/startup.php in J. He PHPGiggle 12.08 and previous versions, as distributed on comscripts.com, allows remote malicious users to execute arbitrary PHP code via a URL in the CFG_PHPGIGGLE_ROOT parameter.
Phpgiggle Phpgiggle
1 EDB exploit
NA
CVE-2006-7152
default.asp in ASP-Nuke Community 1.5 and previous versions allows remote malicious users to gain privileges by setting certain pseudo cookie values.
Asp-nuke Asp-nuke 1.0
Asp-nuke Asp-nuke 1.2
Asp-nuke Asp-nuke 1.3
Asp-nuke Asp-nuke Rc2
Asp-nuke Asp-nuke Rc3
Asp-nuke Asp-nuke 1.5
Asp-nuke Asp-nuke Rc1
1 EDB exploit
NA
CVE-2005-3952
SQL injection vulnerability in PHP Labs Top Auction allows remote malicious users to execute arbitrary SQL commands via the (1) category and (2) type parameters to viewcat.php, or (3) certain search parameters. NOTE: later a disclosure reported the affected version as 1.0.
Php Labs Top Auction 1.0
1 EDB exploit
NA
CVE-2007-2370
SQL injection vulnerability in index.php in the John Mordo Jobs 2.4 and previous versions module for XOOPS allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a jobsview action. NOTE: the module name was originally reported as Job Listings.
Xoops John Mordo Jobs Module
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »