Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cwh vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6193
Sam Crew MyBlog stores passwords in cleartext in a MySQL database, which allows context-dependent malicious users to obtain sensitive information.
Myblog Myblog
1 EDB exploit
NA
CVE-2008-6381
SQL injection vulnerability in modules/adresses/viewcat.php in bcoos 1.0.13, and possibly earlier, allows remote authenticated users with Addresses module permissions to execute arbitrary SQL commands via the cid parameter.
Bcoos Bcoos 1.0.11
Bcoos Bcoos 1.0.10
Bcoos Bcoos 1.0.9
Bcoos Bcoos
Bcoos Bcoos 1.0.12
1 EDB exploit
NA
CVE-2008-2813
Directory traversal vulnerability in index.php in WallCity-Server Shoutcast Admin Panel 2.0, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Shoutcastadmin Wallcity-server Shoutcast Admin Panel 2.0
1 EDB exploit
NA
CVE-2008-4713
SQL injection vulnerability in view.php in 212cafe Board 0.07 allows remote malicious users to execute arbitrary SQL commands via the qID parameter.
212cafe 212cafeboard 0.07
1 EDB exploit
NA
CVE-2008-6790
The admin module in MindDezign Photo Gallery 2.2 allows remote malicious users to add administrative users and gain privileges via a modified username parameter in an edit account action to index.php.
Minddezign Photo Gallery 2.2
1 EDB exploit
NA
CVE-2008-4332
SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allows remote malicious users to execute arbitrary SQL commands via the idcat parameter to showtopic.php.
Cannot Php Infoboard V.7
1 EDB exploit
NA
CVE-2008-3506
SQL injection vulnerability in PolyPager 1.0 rc2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the nr parameter to the default URI.
Polypager Polypager 1.0
Polypager Polypager
Polypager Polypager 0.9.9
Polypager Polypager 0.9.4
Polypager Polypager 0.9.51
Polypager Polypager 0.9.6
Polypager Polypager 0.9.7
Polypager Polypager 0.9.8
1 EDB exploit
NA
CVE-2008-3178
Unrestricted file upload vulnerability in upload_pictures.php in WebXell Editor 0.1.3 allows remote malicious users to execute arbitrary code by uploading a .php file with a jpeg content type, then accessing it via a direct request to the file in upload/.
Webxell Webxell Editor 0.1.3
1 EDB exploit
NA
CVE-2008-3497
SQL injection vulnerability in pages.php in MyPHP CMS 0.3.1 allows remote malicious users to execute arbitrary SQL commands via the pid parameter.
Myphp Cms Myphp Cms 0.3.1
1 EDB exploit
NA
CVE-2008-3505
Cross-site scripting (XSS) vulnerability in PolyPager 1.0 rc2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the nr parameter to the default URI.
Polypager Polypager 1.0
Polypager Polypager
Polypager Polypager 0.9.4
Polypager Polypager 0.9.51
Polypager Polypager 0.9.8
Polypager Polypager 0.9.9
Polypager Polypager 0.9.6
Polypager Polypager 0.9.7
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »