Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g4n0k vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1641
Multiple stack-based buffer overflows in Mini-stream Ripper 3.0.1.1 allow remote malicious users to execute arbitrary code via (1) a long rtsp URL in a .ram file and (2) a long string in the HREF attribute of a REF element in a .asx file.
Mini-stream Ripper 3.0.1.1
2 EDB exploits
NA
CVE-2008-6231
Pre Classified Listing PHP allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Classified Listings -
2 EDB exploits
NA
CVE-2008-6912
Zeeways SHAADICLONE 2.0 allows remote malicious users to bypass authentication and gain administrative privileges via a direct request to admin/home.php.
Zeeways Shaadiclone 2.0
2 EDB exploits
NA
CVE-2009-1645
Multiple stack-based buffer overflows in Mini-stream Easy RM-MP3 Converter 3.0.0.7 allow remote malicious users to execute arbitrary code via (1) a long rtsp URL in a .ram file and (2) a long string in the HREF attribute of a REF element in a .asx file.
Mini-stream Easy Rm-mp3 Converter 3.0.0.7
2 EDB exploits
NA
CVE-2008-6232
Pre Shopping Mall allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Shopping Mall -
2 EDB exploits
NA
CVE-2008-6940
TurnkeyForms Web Hosting Directory stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain a database backup via a direct request to admin/backup/db.
Turnkeyforms Web Hosting Directory -
1 EDB exploit
NA
CVE-2008-7046
AJ Square Free Polling Script (AJPoll) allows remote malicious users to bypass authentication and create new polls via a direct request to admin/include/newpoll.php, a different vector than CVE-2008-7045. NOTE: the provenance of this information is unknown; the details are obtain...
Ajsquare Free Polling Script
1 EDB exploit
NA
CVE-2008-5037
SQL injection vulnerability in view.php in ElkaGroup Image Gallery 1.0 allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Elkagroup Image Gallery 1.0
1 EDB exploit
NA
CVE-2008-5651
SQL injection vulnerability in plugins/bookmarker/bookmarker_backend.php in MyioSoft EasyBookMarker 4.0 allows remote malicious users to execute arbitrary SQL commands via the Parent parameter.
Myiosoft Easybookmarker 4.0
1 EDB exploit
NA
CVE-2009-4675
admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote malicious users to change the admin password via an unspecified form submission.
Mole-group Gastro Portal \\(restaurant Directory\\) Script -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »