Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
diabolic crab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0928
Multiple cross-site scripting (XSS) vulnerabilities in PhotoPost PHP Pro 5.x allow remote malicious users to inject arbitrary web script or HTML via the (1) cat, (2) password, (3) ppuser, (4) sort, or (5) si parameters to showgallery.php, the (6) ppuser, (7) sort, or (8) si param...
Photopost Photopost Php Pro 5.02
3 EDB exploits
NA
CVE-2005-0948
SQL injection vulnerability in ad_click.asp for PortalApp allows remote malicious users to execute arbitrary SQL commands via the banner_id parameter.
Iatek Portalapp
1 EDB exploit
NA
CVE-2005-0962
SQL injection vulnerability in index.php for Lighthouse Squirrelcart allows remote malicious users to execute arbitrary SQL commands via the (1) crn parameter in a show action or (2) rn parameter in a show_detail action.
Lighthouse Development Squirrelcart 1.5.5
1 EDB exploit
NA
CVE-2005-1004
Cross-site scripting (XSS) vulnerability in usrdetails.php in ProfitCode PayProCart 3.0 allows remote malicious users to inject arbitrary web script or HTML via the sgnuptype parameter.
Profitcode Payprocart 3.0
1 EDB exploit
NA
CVE-2005-1005
ProfitCode PayProCart 3.0 allows remote malicious users to bypass authentication and gain administrative privileges to the admin control panel, as demonstrated via a direct request to adminshop/index.php with hex-encoded .. sequences in the ftoedit parameter.
Profitcode Payprocart 3.0
1 EDB exploit
NA
CVE-2005-0929
SQL injection vulnerability in PhotoPost PHP Pro 5.x may allow remote malicious users to execute arbitrary SQL commands via (1) the sl parameter to showmembers.php or (2) the photo parameter to showphoto.php.
3 EDB exploits
NA
CVE-2004-1558
Multiple stack-based buffer overflows in YPOPs! (aka YahooPOPS) 0.4 up to and including 0.6 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) POP3 USER command or (2) SMTP request.
Ypops Ypops 0.5
Ypops Ypops 0.6
Ypops Ypops 0.4
Ypops Ypops 0.4.1
Ypops Ypops 0.4.2
Ypops Ypops 0.4.3
Ypops Ypops 0.4.4
Ypops Ypops 0.4.5
Ypops Ypops 0.4.6
3 EDB exploits
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started