Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
book vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2009-2017
SQL injection vulnerability in products.php in Virtue Book Store allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Virtuenetz Virtue Book Store
1 EDB exploit
755
VMScore
CVE-2006-1374
SQL injection vulnerability in viewStatement.php in AdMan 1.0.20051221 and previous versions allows remote malicious users to execute arbitrary SQL commands via the transactions_offset parameter.
Brain Book Software Adman
1 EDB exploit
445
VMScore
CVE-2006-1375
AdMan 1.0.20051221 and previous versions allows remote malicious users to obtain the full path via (1) a blank campaignId parameter to editCampaign.php and (2) a blank schemeId parameter to viewPricingScheme.php.
Brain Book Software Adman
685
VMScore
CVE-2007-1937
PHP remote file inclusion vulnerability in smilies.php in Scorp Book 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the config parameter.
Dreamcodes Scorp Book 1.0
1 EDB exploit
755
VMScore
CVE-2007-2000
Multiple SQL injection vulnerabilities in admin/admin.php in Crea-Book 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) pseudo or (2) passe parameter.
Raphael Limbach Crea-book
1 EDB exploit
668
VMScore
CVE-2010-4923
SQL injection vulnerability in book/detail.php in Virtue Netz Virtue Book Store allows remote malicious users to execute arbitrary SQL commands via the bid parameter.
Virtuenetz Virtue Book Store
605
VMScore
CVE-2019-15770
The woo-address-book plugin prior to 1.6.0 for WordPress has save calls without nonce verification checks.
Hallme Woocommerce Address Book
668
VMScore
CVE-2001-1114
book.cgi in NetCode NC Book 0.2b allows remote malicious users to execute arbitrary commands via shell metacharacters in the "current" parameter.
Netcode Nc Book 0.2b
383
VMScore
CVE-2002-2377
Cross-site scripting (XSS) vulnerability in addentry.cgi in ZAP 1.0.3 allows remote malicious users to inject arbitrary SSi directives, web script, and HTML via the entry field.
Sephiroth32 Zap Book 1.0.3
755
VMScore
CVE-2019-16399
Western Digital WD My Book World through II 1.02.12 suffers from Broken Authentication, which allows an malicious user to access the /admin/ directory without credentials. An attacker can easily enable SSH from /admin/system_advanced.php?lang=en and login with the default root pa...
Westerndigital Wd My Book Firmware
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »