Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dcrab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1224
Multiple SQL injection vulnerabilities in DUware DUportal Pro 3.4 allow remote malicious users to execute arbitrary SQL commands via the (1) nChannel parameter to default.asp, cat.asp, or detail.asp, (2) the iChannel parameter to search.asp, default.asp, result.asp, cat.asp, or d...
Duware Duportal 3.4
Duware Duportal Pro 3.4
Duware Duportal Sql 3.4
6 EDB exploits
NA
CVE-2005-1236
Multiple SQL injection vulnerabilities in DUware DUportal 3.1.2 and 3.1.2 SQL allow remote malicious users to execute arbitrary SQL commands via the (1) iChannel parameter to channel.asp or search.asp, (2) iData parameter to detail.asp or inc_rating.asp, (3) iCat parameter to det...
Duware Duportal 3.1.2
Duware Duportal 3.1.2 Sql
4 EDB exploits
NA
CVE-2005-1030
Multiple cross-site scripting (XSS) vulnerabilities in Active Auction House allow remote malicious users to inject arbitrary web script or HTML via the (1) ReturnURL, (2) password, (3) username parameter, (4) ReturnURL parameter to account.asp, (5) Table, (6) Title parameter to s...
Active Web Softwares Active Auction House 7.1
4 EDB exploits
NA
CVE-2005-1161
Multiple SQL injection vulnerabilities in OneWorldStore allow remote malicious users to execute arbitrary SQL commands via the idProduct parameter to (1) owAddItem.asp or (2) owProductDetail.asp, (3) idCategory parameter to owListProduct.asp, or (4) bSpecials parameter to owListP...
Oneworldstore Oneworldstore
3 EDB exploits
NA
CVE-2005-0935
Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote malicious users to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.
Esmi Paypal Storefront 1.7
2 EDB exploits
NA
CVE-2005-1075
Multiple cross-site scripting (XSS) vulnerabilities in RadScripts RadBids Gold 2 allow remote malicious users to inject arbitrary web script or HTML via (1) the farea parameter to faq.php or the (2) cat, (3) order, or (4) area parameters to index.php.
Radscripts Radbids 2
2 EDB exploits
NA
CVE-2005-1049
Multiple cross-site scripting vulnerabilities in PostNuke 0.760-RC3 allow remote malicious users to inject arbitrary web script or HTML via the (1) module parameter to admin.php or (2) op parameter to user.php. NOTE: the vendor reports that certain issues could not be reproduced ...
Postnuke Software Foundation Postnuke 0.760 Rc3
2 EDB exploits
NA
CVE-2005-1486
Multiple cross-site scripting vulnerabilities in FishCart 3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) trackingnum, (2) reqagree, or (3) m parameter to upstracking.php or (4) nlst parameter to display.php. NOTE: the vendor was not able to re...
Fishnet Fishcart 3.1
2 EDB exploits
NA
CVE-2005-1384
Multiple SQL injection vulnerabilities in phpCoin 1.2.2 allow remote malicious users to execute arbitrary SQL commands via the (1) search parameter to index.php, (2) phpcoinsessid parameter to login.php, (3) id, (4) dtopic_id, or (5) dcat_id to mod.php.
Coinsoft Technologies Phpcoin 1.2
Coinsoft Technologies Phpcoin 1.2.1
Coinsoft Technologies Phpcoin 1.2.1b
2 EDB exploits
NA
CVE-2005-1029
Multiple SQL injection vulnerabilities in Active Auction House allow remote malicious users to execute arbitrary SQL commands via the (1) catid, (2) SortDir, or (3) Sortby parameter to default.asp, (4) itemID parameter to ItemInfo.asp, or (5) Email field to sendpassword.asp.
Active Web Softwares Active Auction House 7.1
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »