Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
staker vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5607
SQL injection vulnerability in the JMovies (aka JM or com_jmovies) component 1.1 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter to index.php.
Joomitaly Jmovies 1.1
1 EDB exploit
NA
CVE-2008-5491
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the pageID parameter.
Slimcms Slimcms
1 EDB exploit
NA
CVE-2008-5418
Directory traversal vulnerability in login.php in the PunPortal module prior to 2.0 for PunBB allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the pun_user[language] parameter.
Justin Roy Punportal Module 1.0
1 EDB exploit
NA
CVE-2008-5322
Wysi Wiki Wyg 1.0 allows remote malicious users to obtain system information via an invalid categup parameter to index.php, which calls the phpinfo function.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
NA
CVE-2008-5323
Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg 1.0 allows remote malicious users to inject arbitrary web script or HTML via the s parameter.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
NA
CVE-2008-5000
SQL injection vulnerability in admin/includes/news.inc.php in PHPX 3.5.16, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via uppercase characters in the news_id parameter.
Phpx Phpx 3.5.16
1 EDB exploit
NA
CVE-2008-4887
SQL injection vulnerability in index.php in NetRisk 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter in a (1) profile page (profile.php) or (2) game page (game.php). NOTE: some of these details are obtained from third ...
Netrisk Netrisk 1.9.7
Netrisk Netrisk
1 EDB exploit
NA
CVE-2008-4888
Cross-site scripting (XSS) vulnerability in error.php in NetRisk 2.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the error parameter to index.php. NOTE: some of these details are obtained from third party information.
Netrisk Netrisk 1.9.7
Netrisk Netrisk
1 EDB exploit
NA
CVE-2008-4786
SQL injection vulnerability in easyshop.php in the EasyShop plugin for e107 allows remote malicious users to execute arbitrary SQL commands via the category_id parameter.
E107 Easyshop Plugin
1 EDB exploit
NA
CVE-2008-4700
SQL injection vulnerability in admin.php in Libera CMS 1.12 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the libera_staff_pass cookie parameter.
Liberiacms Liberia Cms
Liberiacms Liberia Cms 1.00
Liberiacms Liberia Cms 1.11
Liberiacms Liberia Cms 1.10
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »