Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pouya_server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6325
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Classifieds Script allow remote malicious users to inject arbitrary web script or HTML via the (1) radio parameter to showcategory.php, (2) msg parameter to advertisers/signinform.php, (3) radio parameter to gallery.p...
Softbizscripts Classifieds Script -
6 EDB exploits
NA
CVE-2008-6891
Multiple cross-site scripting (XSS) vulnerabilities in ASP Forum Script allow remote malicious users to inject arbitrary web script or HTML via the (1) forum_id parameter to (a) new_message.asp and (b) messages.asp, and the (2) query string to default.asp.
Codetoad Asp Forum Script
3 EDB exploits
NA
CVE-2008-6370
Cross-site scripting (XSS) vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote malicious users to inject arbitrary web script or HTML via the DisplayFormat parameter.
Ocean12tech Contact Manager Pro 1.02
1 EDB exploit
NA
CVE-2008-6392
SQL injection vulnerability in showads.php in Z1Exchange allows remote malicious users to execute arbitrary SQL commands via the id parameter.
1scripts Z1exchange 1.0
1 EDB exploit
NA
CVE-2008-6369
SQL injection vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote malicious users to execute arbitrary SQL commands via the Sort parameter.
Ocean12tech Contact Manager Pro 1.02
1 EDB exploit
NA
CVE-2008-6386
Cross-site scripting (XSS) vulnerability in showads.php in Z1Exchange 1.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
1scripts Z1exchange 1.0
1 EDB exploit
NA
CVE-2008-6391
SQL injection vulnerability in main.asp in Jbook allows remote malicious users to execute arbitrary SQL commands via the username (user parameter).
Nexusjnr Jbook -
1 EDB exploit
NA
CVE-2009-0249
Katy Whitton RankEm stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing credentials via a direct request for database/topsites.mdb.
Katywhitton Rankem
1 EDB exploit
NA
CVE-2009-0335
Cross-site scripting (XSS) vulnerability in index.asp in Katy Whitton BlogIt! allows remote malicious users to inject arbitrary web script or HTML via the view parameter.
Katywhitton Blogit! Nil
1 EDB exploit
NA
CVE-2009-0336
Katy Whitton BlogIt! stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file containing user credentials via a direct request for database/Blog.mdb. NOTE: some of these details are obtaine...
Katywhitton Blogit! Nil
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »