Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
war vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-5063
SQL injection vulnerability in article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote malicious users to execute arbitrary SQL commands via the ratearticleselect parameter.
Vwar Virtual War 1.6.1
1 EDB exploit
NA
CVE-2010-5066
The createRandomPassword function in includes/functions_common.php in Virtual War (aka VWar) 1.6.1 R2 uses a small range of values to select the seed argument for the PHP mt_srand function, which makes it easier for remote malicious users to determine randomly generated passwords...
Vwar Virtual War 1.6.1
NA
CVE-2007-2312
Multiple SQL injection vulnerabilities in the Virtual War (VWar) 1.5.0 R15 module for PHP-Nuke allow remote malicious users to execute arbitrary SQL commands via the n parameter to extra/online.php and other unspecified scripts in extra/. NOTE: this might be same vulnerability as...
Vwar Virtual War 1.5.0 R15
1 EDB exploit
NA
CVE-2008-0753
SQL injection vulnerability in calendar.php in Virtual War (VWar) 1.5 allows remote malicious users to execute arbitrary SQL commands via the month parameter.
Vwar Virtual War 1.5
1 EDB exploit
NA
CVE-2006-1747
PHP remote file inclusion vulnerability in Virtual War (VWar) 1.5.0 allows remote malicious users to execute arbitrary PHP code via a URL in the vwar_root parameter to (1) admin/admin.php, (2) war.php, (3) stats.php, (4) news.php, (5) joinus.php, (6) challenge.php, (7) calendar.p...
Vwar Virtual War 1.5.0
7 EDB exploits
NA
CVE-2005-1718
Buffer overflow in LS Games War Times 1.03 and previous versions allows remote malicious users to cause a denial of service (server crash) via a long nickname.
Ls Games War Times 1.03
1 EDB exploit
NA
CVE-2007-4638
Blizzard Entertainment StarCraft Brood War 1.15.1 and previous versions allows remote malicious users to cause a denial of service (application crash) via a malformed map, which triggers an out-of-bounds read during a minimap preview.
Blizzard Entertainment Starcraft Brood War
1 EDB exploit
NA
CVE-2006-1818
Multiple cross-site scripting (XSS) vulnerabilities in warforge.NEWS 1.0 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly including the (1) first_name and (2) last_name parameter in myaccounts.php. NOTE: portions of these detai...
The War Forge Warforge.news 1.0
NA
CVE-2001-0295
Directory traversal vulnerability in War FTP 1.67.04 allows remote malicious users to list directory contents and possibly read files via a "dir *./../.." command.
Jarle Aase War Ftpd 1.67b04
1 EDB exploit
NA
CVE-2006-6996
Multiple cross-site scripting (XSS) vulnerabilities in warforge.NEWS 1.0 allow remote malicious users to inject arbitrary HTML and web script via the (1) title and (2) newspost parameters to (a) newsadd.php, and the (3) name, title, and (4) comment parameters to (b) news.php, a d...
The War Forge Warforge.news 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »