Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

sphider sphider vulnerabilities and exploits

(subscribe to this query)
2.6
CVSSv2

CVE-2008-5211

Cross-site scripting (XSS) vulnerability in search.php in Sphider 1.3.4, when the search suggestion feature is enabled, allows remote malicious users to inject arbitrary web script or HTML via the query parameter, a different vector than CVE-2006-2506.
Sphider Sphider 1.3.4
7.5
CVSSv2

CVE-2014-5192

SQL injection vulnerability in admin/admin.php in Sphider 1.3.6 allows remote malicious users to execute arbitrary SQL commands via the filter parameter.
Sphider Sphider 1.3.6
4.3
CVSSv2

CVE-2014-5193

Cross-site scripting (XSS) vulnerability in admin/admin.php in Sphider 1.3.6 allows remote malicious users to inject arbitrary web script or HTML via the category parameter. NOTE: the url parameter vector is already covered by CVE-2014-5082.
Sphider Sphider 1.3.6
6.5
CVSSv2

CVE-2014-5194

Static code injection vulnerability in admin/admin.php in Sphider 1.3.6 allows remote authenticated users to inject arbitrary PHP code into settings/conf.php via the _word_upper_bound parameter.
Sphider Sphider 1.3.6
8.8
CVSSv3

CVE-2014-5085

A Command Execution vulnerability exists in Sphider Plus 3.2 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5085 pertains to instances of fwrite in Sphider Plus, but do not exist in either Sphider o...
Sphider-plus Sphider-plus 3.2
8.8
CVSSv3

CVE-2014-5084

A Command Execution vulnerability exists in Sphider Pro 3.2 due to insufficient sanitization of fwrite, which could let a remote malicious user execute arbitrary code. CVE-2014-5084 pertains to instances of fwrite in Sphider Pro only, but do not exist in either Sphider or Sphider...
Sphiderpro Sphider Pro 3.2
6
CVSSv2

CVE-2010-5044

SQL injection vulnerability in models/log.php in the Search Log (com_searchlog) component 3.1.0 for Joomla! allows remote authenticated users, with Public Back-end privileges, to execute arbitrary SQL commands via the search parameter in a log action to administrator/index.php. N...
Kanich Com Searchlog 3.1.0
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
unprivilegedprivilege escalationCVE-2024-57040morningCVE-2025-24801CVE-2025-24813CVE-2025-29930CVE-2024-10442smartosCVE-2025-0694cryptolibmbconnect24local users
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook