Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alphanix vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5560
PostEcards stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for postcards.mdb.
Dazzlindonna Postecards
1 EDB exploit
NA
CVE-2008-5573
SQL injection vulnerability in the login feature in Poll Pro 2.0 allows remote malicious users to execute arbitrary SQL commands via the (1) Password and (2) username parameters.
Adcomplete Poll Pro 2.0
1 EDB exploit
NA
CVE-2008-5589
SQL injection vulnerability in processlogin.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the (1) txtusername parameter (aka username field) or the (2) txtpassword parameter (aka password field). NOTE: some of these details are obt...
Katywhitton Rankem
1 EDB exploit
NA
CVE-2008-5591
Cross-site scripting (XSS) vulnerability in login.asp in Nightfall Personal Diary 1.0 allows remote malicious users to inject arbitrary web script or HTML via the username parameter and possibly other "login fields." NOTE: some of these details are obtained from third p...
Iwrite Nightfall Personal Diary 1.0
1 EDB exploit
NA
CVE-2008-5595
SQL injection vulnerability in detail.asp in ASP AutoDealer allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Aspapps Asp Autodealer Nil
1 EDB exploit
NA
CVE-2008-5605
Multiple SQL injection vulnerabilities in ASP Portal allow remote malicious users to execute arbitrary SQL commands via the (1) ItemID parameter to classifieds.asp and the (2) ID parameter to Events.asp.
Aspapps Aspportal Nil
1 EDB exploit
NA
CVE-2009-1321
Cross-site scripting (XSS) vulnerability in search.asp in ASP Product Catalog 1.0 allows remote malicious users to inject arbitrary web script or HTML via the keywords parameter.
Humayun Shabbir Bhutta Asp Product Catalog 1.0
1 EDB exploit
NA
CVE-2009-1322
ASP Product Catalog 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing user credentials via a direct request for database/aspProductCatalog.mdb.
Humayun Shabbir Bhutta Asp Product Catalog 1.0
1 EDB exploit
NA
CVE-2008-5893
Cross-site scripting (XSS) vulnerability in admin_dblayers.asp in ClickAndEmail allows remote malicious users to inject arbitrary web script or HTML via the tablename parameter in an update action.
Icash Click\\&email Nil
1 EDB exploit
NA
CVE-2008-5981
PacPoll 4.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for (1) poll.mdb or (2) poll97.mdb.
Pacosdrivers Pacpoll 4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »