Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
david sopas ferreira vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3004
SQL injection vulnerability in Interakt MX Shop 3.2.0 allows remote malicious users to execute arbitrary SQL commands via the (1) idp, (2) id_ctg, or (3) id_prd parameters to the pages module in index.php.
Interakt Mx Shop 3.2.0
1 EDB exploit
NA
CVE-2008-6631
Multiple cross-site scripting (XSS) vulnerabilities in index.php in BlogPHP 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) user parameter in a sendmessage action and the (2) username parameter when registering a new user, different vectors tha...
Blogphp Blogphp 2.0
1 EDB exploit
NA
CVE-2003-1145
Cross-site scripting (XSS) vulnerability in friendmail.php in OpenAutoClassifieds 1.0 allows remote malicious users to inject arbitrary web script or HTML via the listing parameter.
1 EDB exploit
NA
CVE-2004-0301
Cross-site scripting (XSS) vulnerability in more.php for Online Store Kit 3.0 allows remote malicious users to inject arbitrary HTML via the id parameter.
Ecommerce Corporation Online Store Kit 3.0 Pro
Ecommerce Corporation Online Store Kit 3.0 Standard
Ecommerce Corporation Online Store Kit 3.0 Lite
1 EDB exploit
NA
CVE-2004-2072
Cross-site scripting (XSS) vulnerability in index.php for Mambo Open Source 4.6, and possibly earlier versions, allows remote malicious users to execute script on other clients via the Itemid parameter.
Mambo Mambo Open Source 4.6
1 EDB exploit
NA
CVE-2004-0300
SQL injection vulnerability in Online Store Kit 3.0 allows remote malicious users to inject arbitrary SQL and gain unauthorized access via (1) the cat parameter in shop.php, (2) the id parameter in more.php, (3) the cat_manufacturer parameter in shop_by_brand.php, or (4) the id p...
Ecommerce Corporation Online Store Kit 3.0 Lite
Ecommerce Corporation Online Store Kit 3.0 Pro
Ecommerce Corporation Online Store Kit 3.0 Standard
4 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started