Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
l4teral vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0267
Multiple SQL injection vulnerabilities in eTicket 1.5.5.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) status, (2) sort, and (3) way parameters to search.php; and allow remote authenticated administrators to execute arbitrary SQL commands via the...
Eticket Eticket 1.5.5.2
2 EDB exploits
NA
CVE-2007-5684
Multiple directory traversal vulnerabilities in TikiWiki 1.9.8.1 and previous versions allow remote malicious users to include and execute arbitrary files via an absolute pathname in (1) error_handler_file and (2) local_php parameters to (a) tiki-index.php, or (3) encoded "....
Tiki Tikiwiki Cms\\/groupware 1.9.4
Tiki Tikiwiki Cms\\/groupware 1.9.2
Tiki Tikiwiki Cms\\/groupware 1.9.8
Tiki Tikiwiki Cms\\/groupware 1.9.7
Tiki Tikiwiki Cms\\/groupware 1.9.6
Tiki Tikiwiki Cms\\/groupware 1.9.5
Tiki Tikiwiki Cms\\/groupware 1.9.0
Tiki Tikiwiki Cms\\/groupware 1.9.3
Tiki Tikiwiki Cms\\/groupware 1.9.1
Tiki Tikiwiki Cms\\/groupware 1.6.1
Tiki Tikiwiki Cms\\/groupware
1 EDB exploit
NA
CVE-2008-0633
Buffer overflow in Anon Proxy Server 0.102 and previous versions, when user authentication is enabled, allows remote malicious users to cause a denial of service (exception) via a user name with a large number of quotes, which triggers the overflow during escaping.
Anon Proxy Server Anon Proxy Server
1 EDB exploit
NA
CVE-2007-5983
Cross-site scripting (XSS) vulnerability in index.php in Justin Hagstrom AutoIndex PHP Script prior to 2.2.3 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
Justin Hagstrom Autoindex Php Script 2.0.2
Justin Hagstrom Autoindex Php Script 2.0.3
Justin Hagstrom Autoindex Php Script 2.2.0
Justin Hagstrom Autoindex Php Script 2.2.1
Justin Hagstrom Autoindex Php Script 2.0.6
Justin Hagstrom Autoindex Php Script 2.0.7
Justin Hagstrom Autoindex Php Script 2.0.4
Justin Hagstrom Autoindex Php Script 2.0.5
Justin Hagstrom Autoindex Php Script 2.2.2
Justin Hagstrom Autoindex Php Script 2.0.0
Justin Hagstrom Autoindex Php Script 2.0.1
Justin Hagstrom Autoindex Php Script 2.1.0
Justin Hagstrom Autoindex Php Script 2.1.1
Justin Hagstrom Autoindex Php Script 2.1.2
1 EDB exploit
NA
CVE-2008-5584
Multiple cross-site scripting (XSS) vulnerabilities in ProjectPier 0.8 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) a message, (2) a milestone, or (3) a display name in a profile, or the (4) a or (5) c parameter to index.php.
Projectpier Projectpier
1 EDB exploit
NA
CVE-2007-4976
Directory traversal vulnerability in viewlog.php in Coppermine Photo Gallery (CPG) 1.4.12 and previous versions allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the log parameter.
Coppermine Coppermine Photo Gallery 1.4.10
Coppermine Coppermine Photo Gallery 1.4.11
Coppermine Coppermine Photo Gallery 1.4.12
Coppermine Coppermine Photo Gallery 1.4.2
Coppermine Coppermine Photo Gallery 1.4
Coppermine Coppermine Photo Gallery 1.4.4
Coppermine Coppermine Photo Gallery 1.4.9
1 EDB exploit
NA
CVE-2007-5984
classes/Url.php in Justin Hagstrom AutoIndex PHP Script prior to 2.2.4 allows remote malicious users to cause a denial of service (CPU and memory consumption) via a %00 sequence in the dir parameter to index.php, which triggers an erroneous "recursive calculation."
Justin Hagstrom Autoindex Php Script 2.0.4
Justin Hagstrom Autoindex Php Script 2.0.5
Justin Hagstrom Autoindex Php Script 2.2.1
Justin Hagstrom Autoindex Php Script 2.2.2
Justin Hagstrom Autoindex Php Script 2.0.0
Justin Hagstrom Autoindex Php Script 2.0.1
Justin Hagstrom Autoindex Php Script 2.1.0
Justin Hagstrom Autoindex Php Script 2.1.1
Justin Hagstrom Autoindex Php Script 2.0.6
Justin Hagstrom Autoindex Php Script 2.0.7
Justin Hagstrom Autoindex Php Script 2.2.3
Justin Hagstrom Autoindex Php Script 2.0.2
Justin Hagstrom Autoindex Php Script 2.0.3
Justin Hagstrom Autoindex Php Script 2.1.2
Justin Hagstrom Autoindex Php Script 2.2.0
1 EDB exploit
NA
CVE-2007-4977
Cross-site scripting (XSS) vulnerability in mode.php in Coppermine Photo Gallery (CPG) 1.4.12 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the referer parameter.
Coppermine Coppermine Photo Gallery 1.4.10
Coppermine Coppermine Photo Gallery 1.4.11
Coppermine Coppermine Photo Gallery 1.4.12
Coppermine Coppermine Photo Gallery 1.4.2
Coppermine Coppermine Photo Gallery 1.4
Coppermine Coppermine Photo Gallery 1.4.4
Coppermine Coppermine Photo Gallery 1.4.9
1 EDB exploit
NA
CVE-2008-0266
Cross-site request forgery (CSRF) vulnerability in admin.php in eTicket 1.5.5.2 allows remote malicious users to change the administrative password and possibly perform other administrative tasks. NOTE: either the old password must be known, or the attacker must leverage a separa...
Eticket Eticket 1.5.5.2
1 EDB exploit
NA
CVE-2008-0268
Cross-site scripting (XSS) vulnerability in view.php in eTicket 1.5.5.2 allows remote malicious users to inject arbitrary web script or HTML via the s parameter.
Eticket Eticket 1.5.5.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »