Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajax vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-30928
SQL Injection vulnerability in DerbyNet v9.0 and below allows malicious users to execute arbitrary SQL commands via 'classids' Parameter in ajax/query.slide.next.inc
7.5
CVSSv2
CVE-2020-8519
SQL injection with the search parameter in Records.php for phpzag live add edit delete data tables records with ajax php mysql
Phpzag Phpzag -
7.5
CVSSv2
CVE-2020-8520
SQL injection in order and column parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql
Phpzag Phpzag -
7.5
CVSSv2
CVE-2020-8521
SQL injection with start and length parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql
Phpzag Phpzag -
7.5
CVSSv2
CVE-2010-2005
Multiple PHP remote file inclusion vulnerabilities in DataLife Engine (DLE) 8.3 allow remote malicious users to execute arbitrary PHP code via a URL in (1) the selected_language parameter to engine/inc/include/init.php, (2) the config[langs] parameter to engine/inc/help.php, (3) ...
Datalifecms Datalife Engine 8.3
4 EDB exploits
7.5
CVSSv2
CVE-2007-1424
Multiple PHP remote file inclusion vulnerabilities in Softnews Media Group DataLife Engine allow remote malicious users to execute arbitrary PHP code via a URL in the root_dir parameter to (1) init.php and (2) Ajax/editnews.php. NOTE: some of these details are obtained from third...
Softnews Media Group Datalife Engine 4.1
Softnews Media Group Datalife Engine 5.5
2 EDB exploits
6.5
CVSSv2
CVE-2013-3522
SQL injection vulnerability in index.php/ajax/api/reputation/vote in vBulletin 5.0.0 Beta 11, 5.0.0 Beta 28, and previous versions allows remote authenticated users to execute arbitrary SQL commands via the nodeid parameter.
Vbulletin Vbulletin 5.0.0
2 EDB exploits
4.3
CVSSv2
CVE-2009-2587
Multiple cross-site scripting (XSS) vulnerabilities in DragDropCart allow remote malicious users to inject arbitrary web script or HTML via the (1) sid parameter to assets/js/ddcart.php, the (2) prefix parameter to includes/ajax/getstate.php, the search parameter to (3) index.php...
Dragdropcart Dragdropcart -
6 EDB exploits
6.8
CVSSv2
CVE-2012-4393
Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud prior to 4.0.6 allow remote malicious users to hijack the authentication of arbitrary users for requests that use (1) addBookmark.php, (2) delBookmark.php, or (3) editBookmark.php in bookmarks/ajax/; (4) calen...
Owncloud Owncloud 4.0.3
Owncloud Owncloud 4.0.2
Owncloud Owncloud 4.0.1
Owncloud Owncloud 4.0.0
Owncloud Owncloud 3.0.1
Owncloud Owncloud 4.0.4
Owncloud Owncloud
Owncloud Owncloud 3.0.3
Owncloud Owncloud 3.0.2
Owncloud Owncloud 3.0.0
4
CVSSv2
CVE-2019-16251
plugin-fw/lib/yit-plugin-panel-wc.php in the YIT Plugin Framework up to and including 3.3.8 for WordPress allows authenticated options changes.
Yithemes Yith Woocommerce Wishlist
Yithemes Yith Woocommerce Compare
Yithemes Yith Woocommerce Quick View
Yithemes Yith Woocommerce Zoom Magnifier
Yithemes Yith Woocommerce Ajax Search
Yithemes Yith Woocommerce Badge Management
Yithemes Yith Woocommerce Brands Add-on
Yithemes Yith Woocommerce Request A Quote
Yithemes Yith Woocommerce Social Login
Yithemes Yith Woocommerce Order Tracking
Yithemes Yith Woocommerce Pdf Invoice And Shipping List
Yithemes Yith Pre-order For Woocommerce
Yithemes Yith Woocommerce Advanced Reviews
Yithemes Yith Woocommerce Product Add-ons
Yithemes Yith Woocommerce Gift Cards
Yithemes Yith Woocommerce Subscription
Yithemes Yith Woocommerce Affiliates
Yithemes Yith Woocommerce Cart Messages
Yithemes Yith Woocommerce Product Bundles
Yithemes Yith Woocommerce Frequently Bought Together
Yithemes Yith Woocommerce Multi-step Checkout
Yithemes Yith Color And Label Variations For Woocommerce
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »