Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aria vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-6937
SQL injection vulnerability in displaypic.asp in Xtreme ASP Photo Gallery allows remote malicious users to inject arbitrary SQL commands via the sortorder parameter.
Pensacola Web Designs Xtremeasp Photogallery 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-6671
SQL injection vulnerability in login_form.asp in Instant Softwares Dating Site allows remote malicious users to execute arbitrary SQL commands via the Password parameter, a different product than CVE-2006-6021. NOTE: some of these details are obtained from third party information...
Instantsoftwares Dating Site
1 EDB exploit
7.5
CVSSv2
CVE-2008-1162
SQL injection vulnerability in album.php in PHP WEB SCRIPT Dynamic Photo Gallery 1.02 allows remote malicious users to execute arbitrary SQL commands via the albumID parameter.
Php Web Scripts Dynamic Photo Gallery 1.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2008-5766
SQL injection vulnerability in download.php in Farsi Script Faupload allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Fascript Faupload Nil
1 EDB exploit
7.5
CVSSv2
CVE-2006-7118
SQL injection vulnerability in index.asp in DMXReady Site Engine Manager 1.0 allows remote malicious users to execute arbitrary SQL commands via the mid parameter.
Dmxready Site Engine Manager 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-6181
Multiple SQL injection vulnerabilities in default.asp in ClickTech ClickContact allow remote malicious users to execute arbitrary SQL commands via the (1) AlphaSort, (2) In, and (3) orderby parameters.
Clicktech Clickcontact
1 EDB exploit
7.5
CVSSv2
CVE-2006-6189
SQL injection vulnerability in displayCalendar.asp in ClickTech Click Blog allows remote malicious users to execute arbitrary SQL commands via the date parameter.
Clicktech Clickblog
1 EDB exploit
7.5
CVSSv2
CVE-2006-6207
SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote malicious users to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error
Lynx Internet Solutions Evolve Merchant
1 EDB exploit
7.5
CVSSv2
CVE-2006-6210
SQL injection vulnerability in listpics.asp in ASP ListPics 5.0 allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Iisworks Asp Listpics 5.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-6243
Multiple SQL injection vulnerabilities in index.asp in FipsSHOP allow remote malicious users to execute arbitrary SQL commands via the (1) cat or (2) did parameter.
Fipsasp Fipsshop
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »