Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eugene minaev vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-7157
Unrestricted file upload vulnerability in EkinBoard 1.1.0 and previous versions allows remote malicious users to execute arbitrary code by uploading an avatar file with an executable extension followed by a safe extension, then accessing it via a direct request to the file in upl...
Ekinboard Ekinboard
1 EDB exploit
NA
CVE-2008-0140
Directory traversal vulnerability in error.php in Uebimiau Webmail 2.7.10 and 2.7.2 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the selected_theme parameter, a different vector than CVE-2007-3172.
Uebimiau Webmail 2.7.10
Uebimiau Webmail 2.7.2
1 EDB exploit
NA
CVE-2008-0147
SQL injection vulnerability in index.php in SmallNuke 2.0.4 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via (1) the user_email parameter and possibly (2) username parameter in a Members action.
Smallnuke Smallnuke 2.0.4
1 EDB exploit
NA
CVE-2008-0157
SQL injection vulnerability in FlexBB 0.6.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the flexbb_temp_id parameter in a cookie.
Flexbb Flexbb 1.0 10005 Beta Release 1
Flexbb Flexbb
1 EDB exploit
NA
CVE-2008-0210
Uebimiau Webmail 2.7.10 and 2.7.2 does not protect authentication state variables from being set through HTTP requests, which allows remote malicious users to bypass authentication via a sess[auth]=1 parameter settting. NOTE: this can be leveraged to conduct directory traversal a...
Uebimiau Webmail 2.7.2
Uebimiau Webmail 2.7.10
1 EDB exploit
NA
CVE-2008-0224
SQL injection vulnerability in index.php in the Newbb_plus 0.92 and previous versions module in RunCMS 1.6.1 allows remote malicious users to execute arbitrary SQL commands via the Client-Ip parameter.
Runcms Runcms 1.6.1
Runcms Runcms 1.5.3
Runcms Runcms 1.6
1 EDB exploit
NA
CVE-2008-0138
PHP remote file inclusion vulnerability in xoopsgallery/init_basic.php in the mod_gallery module for XOOPS, when register_globals is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter.
Xoops Xoopsgallery Module 1.3.3 9
1 EDB exploit
NA
CVE-2008-0159
SQL injection vulnerability in index.php in eggBlog 3.1.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the eggblogpassword parameter in a cookie.
Eggblog Eggblog
1 EDB exploit
NA
CVE-2008-0255
SQL injection vulnerability in archive.php in iGaming 1.5, and 1.3.1 and previous versions, allows remote malicious users to execute arbitrary SQL commands via the section parameter.
Igamingcms Igaming Cms 1.5
Igamingcms Igaming Cms
1 EDB exploit
NA
CVE-2008-4557
plugins/wacko/highlight/html.php in Strawberry in CuteNews.ru 1.1.1 (aka Strawberry) allows remote malicious users to execute arbitrary PHP code via the text parameter, which is inserted into an executable regular expression.
Cutephp Cutenews 1.1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »