Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2052
Cross-site scripting (XSS) vulnerability in Verosky Media Instant Photo Gallery allows remote malicious users to inject arbitrary web script or HTML via the member parameter in a viewpro action in member.php. NOTE: the original report may be inaccurate, since the "viewpro&qu...
Verosky Media Instant Photo Gallery 1.0
2 EDB exploits
NA
CVE-2006-2070
Cross-site scripting (XSS) vulnerability in member.php in DevBB 1.0.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the member parameter in a viewpro action.
Mybb Devbb 1.0.0
1 EDB exploit
NA
CVE-2006-1926
SQL injection vulnerability in showtopic.php in ThWboard 2.84 beta 3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the pagenum parameter.
Thwboard Thwboard 2.82 Beta
Thwboard Thwboard 2.83 Beta
Thwboard Thwboard 2.8 Beta
Thwboard Thwboard 2.81 Beta
Thwboard Thwboard 2.84 Beta 3
1 EDB exploit
NA
CVE-2006-2079
Cross-site scripting (XSS) vulnerability in portfolio.php in Verosky Media Instant Photo Gallery, possibly prior to 1.0.2, allows remote malicious users to inject arbitrary web script or HTML via the cat_id parameter.
Verosky Media Instant Photo Gallery 1.0
1 EDB exploit
NA
CVE-2006-2127
SQL injection vulnerability in weblog_posting.php in Blog Mod 0.2.x allows remote malicious users to execute arbitrary SQL commands via the r parameter.
Blog Mod Blog Mod 0.2.4
Blog Mod Blog Mod 0.2.4b
Blog Mod Blog Mod 0.2.3
1 EDB exploit
NA
CVE-2006-1802
Cross-site scripting (XSS) vulnerability in index.php in TinyWebGallery 1.3 and 1.4 allows remote malicious users to inject arbitrary web script or HTML via the twg_album parameter.
Tinywebgallery Tinywebgallery 1.3
Tinywebgallery Tinywebgallery 1.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started