Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zinho vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2386
Cross-site scripting (XSS) vulnerability in viewCart.asp in CartWIZ 1.20 allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Elemental Software Cartwiz 1.10
Elemental Software Cartwiz 1.20
1 EDB exploit
NA
CVE-2006-0240
Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote malicious users to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.
8pixel.net Simple Blog
1 EDB exploit
NA
CVE-2005-1008
Cross-site scripting (XSS) vulnerability in posts.asp for ASP-DEv XM Forum RC3 allows remote malicious users to inject arbitrary web script or HTML via a "javascript:" URL in an IMG tag.
Asp-dev Xm Forum Rc3
1 EDB exploit
NA
CVE-2005-1011
SQL injection vulnerability in content.asp in SiteEnable allows remote malicious users to execute arbitrary SQL commands via the sortby parameter.
Iatek Siteenable
1 EDB exploit
NA
CVE-2005-1308
SqWebMail allows remote malicious users to inject arbitrary web script or HTML via CRLF sequences in the redirect parameter followed by the desired script or HTML.
Inter7 Sqwebmail 4.0.4 2004-05-24
Inter7 Sqwebmail 4.0.5
Inter7 Sqwebmail 3.5.2
Inter7 Sqwebmail 3.6.0
Inter7 Sqwebmail 3.4.1
Inter7 Sqwebmail 3.5.0
Inter7 Sqwebmail 3.5.1
Inter7 Sqwebmail 3.5.3
Inter7 Sqwebmail 3.6.1
1 EDB exploit
NA
CVE-2005-1095
Cross-site scripting (XSS) vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Ocean12 Technologies Membership Manager Pro
1 EDB exploit
NA
CVE-2005-1223
Multiple SQL injection vulnerabilities in Ocean12 Calendar manager 1.01 allow remote malicious users to execute arbitrary SQL commands via the Admin_id field.
Ocean12 Technologies Calendar Manager Pro 1.01
1 EDB exploit
NA
CVE-2005-1561
Multiple cross-site scripting (XSS) vulnerabilities in post.asp in MaxWebPortal 1.3.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) mod, (2) M, or (3) type parameter.
Maxwebportal Maxwebportal 1.3.0
Maxwebportal Maxwebportal 1.3.1
Maxwebportal Maxwebportal 1.3.2
Maxwebportal Maxwebportal 1.3.3
Maxwebportal Maxwebportal 1.3.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started