Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5912
SQL injection vulnerability in mailer.php in jPORTAL 2 allows remote malicious users to execute arbitrary SQL commands via the to parameter.
Jportal Jportal Web Portal 2
1 EDB exploit
NA
CVE-2007-4312
SQL injection vulnerability in index.php in Php Blue Dragon CMS 3.0.0 allows remote malicious users to execute arbitrary SQL commands via the article_id parameter in a "print articles" action.
Php Blue Dragon Php Blue Dragon Cms 3.0
1 EDB exploit
NA
CVE-2007-4313
PHP remote file inclusion vulnerability in public_includes/pub_blocks/activecontent.php in Php Blue Dragon CMS 3.0.0 allows remote malicious users to execute arbitrary PHP code via a URL in the vsDragonRootPath parameter, a different vector than CVE-2006-2392, CVE-2006-3076, and ...
Php Blue Dragon Php Blue Dragon Cms 3.0
1 EDB exploit
NA
CVE-2007-3430
SQL injection vulnerability in index.php in Simple Invoices 2007 05 25 allows remote malicious users to execute arbitrary SQL commands via the submit parameter in an email action.
Simple Invoices Simple Invoices 2007-05-25
1 EDB exploit
NA
CVE-2007-3138
Directory traversal vulnerability in index.php in Open Solution Quick.Cart 2.2 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in an sLanguage cookie, which is used to define a value in config/general.php.
Open Solution Quick.cart
1 EDB exploit
NA
CVE-2007-3139
config/general.php in Quick.Cart 2.2 and previous versions uses a default username and password, which allows remote malicious users to access the application via a login action to admin.php. NOTE: this can be leveraged to upload and execute arbitrary code.
Open Solution Quick.cart
1 EDB exploit
NA
CVE-2007-3052
SQL injection vulnerability in index.php in the PNphpBB2 1.2i and previous versions module for PostNuke allows remote malicious users to execute arbitrary SQL commands via the c parameter.
Postnuke Software Foundation Pnphpbb
1 EDB exploit
NA
CVE-2007-2935
core/spellcheck/spellcheck.php in Fundanemt prior to 2.2.0.1 allows remote malicious users to execute arbitrary commands via shell metacharacters in the dict parameter.
Fundanemt Fundanemt
1 EDB exploit
NA
CVE-2007-2890
SQL injection vulnerability in category.php in cpCommerce 1.1.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id_category parameter.
Cpcommerce Cpcommerce
1 EDB exploit
NA
CVE-2007-2320
SQL injection vulnerability in kontakt.php in Papoo 3.02 and previous versions allows remote malicious users to execute arbitrary SQL commands via the menuid parameter, a different vector than CVE-2005-4478.
Papoo Papoo
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »