Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dcrab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1030
Multiple cross-site scripting (XSS) vulnerabilities in Active Auction House allow remote malicious users to inject arbitrary web script or HTML via the (1) ReturnURL, (2) password, (3) username parameter, (4) ReturnURL parameter to account.asp, (5) Table, (6) Title parameter to s...
Active Web Softwares Active Auction House 7.1
4 EDB exploits
NA
CVE-2005-0955
SQL injection vulnerability in InterAKT MX Shop 1.1.1 allows remote malicious users to execute arbitrary SQL commands via the id_ctg parameter.
Interakt Mx Shop 1.1.1
1 EDB exploit
NA
CVE-2005-0981
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Pro 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) payment or (2) send parameter.
Alstrasoft Epay 2.0
1 EDB exploit
NA
CVE-2005-1073
Directory traversal vulnerability in index.php for RadScripts RadBids Gold 2 allows remote malicious users to read arbitrary files via the read parameter.
Radscripts Radbids 2
1 EDB exploit
NA
CVE-2005-0935
Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote malicious users to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.
Esmi Paypal Storefront 1.7
2 EDB exploits
NA
CVE-2005-0980
PHP remote file inclusion vulnerability in index.php in AlstraSoft EPay Pro 2.0 allows remote malicious users to execute arbitrary PHP code by modifying the view parameter to reference a URL on a remote web server that contains the code.
Alstrasoft Epay 2.0
1 EDB exploit
NA
CVE-2005-1049
Multiple cross-site scripting vulnerabilities in PostNuke 0.760-RC3 allow remote malicious users to inject arbitrary web script or HTML via the (1) module parameter to admin.php or (2) op parameter to user.php. NOTE: the vendor reports that certain issues could not be reproduced ...
Postnuke Software Foundation Postnuke 0.760 Rc3
2 EDB exploits
NA
CVE-2005-1075
Multiple cross-site scripting (XSS) vulnerabilities in RadScripts RadBids Gold 2 allow remote malicious users to inject arbitrary web script or HTML via (1) the farea parameter to faq.php or the (2) cat, (3) order, or (4) area parameters to index.php.
Radscripts Radbids 2
2 EDB exploits
NA
CVE-2005-1070
SQL injection vulnerability in index.php in Invision Power Board 1.3.1 Final and previous versions allows remote malicious users to execute arbitrary SQL commands via the st parameter.
Invision Power Services Invision Board 1.3
Invision Power Services Invision Board 1.3.1 Final
Invision Power Services Invision Board 1.0
Invision Power Services Invision Board 1.0.1
Invision Power Services Invision Board 1.3 Final
Invision Power Services Invision Board 1.1.1
Invision Power Services Invision Board 1.1.2
Invision Power Services Invision Board 1.2
1 EDB exploit
NA
CVE-2005-1029
Multiple SQL injection vulnerabilities in Active Auction House allow remote malicious users to execute arbitrary SQL commands via the (1) catid, (2) SortDir, or (3) Sortby parameter to default.asp, (4) itemID parameter to ItemInfo.asp, or (5) Email field to sendpassword.asp.
Active Web Softwares Active Auction House 7.1
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2