Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aliaksandr hartsuyeu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4328
SQL injection vulnerability in admin.php in CloudNine Interactive Links Manager 2006-06-12, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the nick parameter.
Cloudnine Interactive Links Manager 2006-06-12
NA
CVE-2006-1979
Cross-site scripting (XSS) vulnerability in mwguest.php in Manic Web MWGuest 2.1.0 allows remote malicious users to inject arbitrary web script or HTML via the homepage parameter.
Manic Web Mwguest 2.1.0
1 EDB exploit
NA
CVE-2006-1755
SQL injection vulnerability in admin.php in MD News 1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Matthew Dingley Md News 1
1 EDB exploit
NA
CVE-2006-1613
Multiple SQL injection vulnerabilities in aWebNews 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) user123 variable in (a) login.php or (b) fpass.php; or (2) cid parameter to (c) visview.php.
Aweb Labs Awebnews 1.0
1 EDB exploit
NA
CVE-2006-1569
Multiple SQL injection vulnerabilities in RedCMS 0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password parameters to (a) login.php or (b) register.php; or (3) u parameter to (c) profile.php.
Redcms Redcms 0.1
2 EDB exploits
NA
CVE-2006-1568
Multiple cross-site scripting (XSS) vulnerabilities in register.php in RedCMS 0.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) email, (2) location, or (3) website parameters.
Redcms Redcms 0.1
1 EDB exploit
NA
CVE-2006-1543
Multiple SQL injection vulnerabilities in vscripts (aka Kuba Kunkiewicz) VNews 1.2 allow remote malicious users to execute arbitrary SQL commands via the (1) loginvar parameter in (a) admin/admin.php, and the (2) news and (3) nom parameters in (b) news.php.
Vscripts Vnews 1.2
1 EDB exploit
NA
CVE-2006-1341
SQL injection vulnerability in events.php in Maian Events 1.0 allows remote malicious users to execute arbitrary SQL commands via the (1) month and (2) year parameters.
Maian Events Maian Events 1.0
NA
CVE-2006-1328
SQL injection vulnerability in count.php in Skull-Splitter PHP Downloadcounter for Wallpapers 1.0 allows remote malicious users to execute arbitrary SQL commands via the (1) count_fieldname, (2) url_fieldname, or (3) url parameter.
Skull-splitter Download Counter Wallpaper
NA
CVE-2006-1334
Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) entry and (2) email parameters to (a) print.php and (b) mail.php.
Maian Script World Maian Weblog
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »