Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
luny vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3366
Multiple cross-site scripting (XSS) vulnerabilities in V3 Chat allow remote malicious users to inject arbitrary web script or HTML via crafted HTML tags, as demonstrated by the IMG tag, in the (1) id parameter in (a) mail/index.php and (b) mail/reply.php; (2) login_id parameter i...
V3 Chat V3 Chat Beta
7 EDB exploits
NA
CVE-2006-3061
Multiple cross-site scripting (XSS) vulnerabilities in 5 Star Review allow remote malicious users to inject arbitrary web script or HTML via the (1) sort parameter in index2.php, (2) item_id parameter in report.php, (3) search_term parameter (aka the "search box") in se...
Review-script.com Five Star Review Script
2 EDB exploits
NA
CVE-2006-2986
Multiple cross-site scripting (XSS) vulnerabilities in Baby Katie Media (a) very Simple Car Lister (vSCAL) 1.0 and (b) very simple Realty Lister (vsREAL) 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) lid parameter in index.php and the (2) tit...
Baby Katie Media Very Simple Car Lister 1.0
Baby Katie Media Very Simple Realty Lister 1.0
2 EDB exploits
NA
CVE-2006-3563
Cross-site scripting (XSS) vulnerability in gallery/thumb.php in Winged Gallery 1.0 allows remote malicious users to inject arbitrary web script or HTML via the image parameter.
Winged Gallery Winged Gallery 1.0
1 EDB exploit
NA
CVE-2006-3299
Cross-site scripting (XSS) vulnerability in index.php in Usenet Script 0.5 allows remote malicious users to inject arbitrary web script or HTML via the group parameter.
Metalheadws Usenet 0.5
1 EDB exploit
NA
CVE-2006-3052
Cross-site scripting (XSS) vulnerability in Event Registration allows remote malicious users to inject arbitrary web script or HTML via the (1) event_id parameter to view-event-details.php or (2) select_events parameter to event-registration.php. NOTE: the provenance of this info...
Cescripts Event Registration 2checkout
Cescripts Event Registration Corporate
Cescripts Event Registration Paypal
Cescripts Event Registration Rsvp 1.0
1 EDB exploit
NA
CVE-2006-7005
SQL injection vulnerability in item.php in PSY Auction allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Php Script Tools Psy Auction
1 EDB exploit
NA
CVE-2006-2680
Cross-site scripting (XSS) vulnerability in index.php in AZ Photo Album Script Pro allows remote malicious users to inject arbitrary web script or HTML via the gazpart parameter.
Php4script Az Photo Album Script Pro
1 EDB exploit
NA
CVE-2006-3329
SQL injection vulnerability in search.php in PHP/MySQL Classifieds (PHP Classifieds) allows remote malicious users to execute arbitrary SQL commands via the rate parameter.
Deltascripts Php Classifieds 6.04
1 EDB exploit
NA
CVE-2006-2883
Cross-site scripting (XSS) vulnerability in search.php in Kmita FAQ 1.0 allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Kke Info Media Kmita Faq 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »