Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aas9 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-1442
SQL injection vulnerability in views/zero_transact_user.php in the administrative backend in ZeroCMS 1.3.3, 1.3.2, and previous versions allows remote authenticated users to execute arbitrary SQL commands via the user_id parameter in a Modify Account action. NOTE: The article_id ...
Aas9 Zerocms
Aas9 Zerocms 1.3.2
4.3
CVSSv2
CVE-2014-4195
Cross-site scripting (XSS) vulnerability in zero_view_article.php in ZeroCMS 1.0 allows remote malicious users to inject arbitrary web script or HTML via the article_id parameter.
Aas9 Zerocms 1.0
4.3
CVSSv2
CVE-2014-4710
Cross-site scripting (XSS) vulnerability in zero_user_account.php in ZeroCMS 1.0 allows remote malicious users to inject arbitrary web script or HTML via the Full Name field.
Aas9 Zerocms 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2014-4034
SQL injection vulnerability in zero_view_article.php in ZeroCMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the article_id parameter.
Aas9 Zerocms 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2014-4194
SQL injection vulnerability in zero_transact_article.php in ZeroCMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the article_id parameter in a Submit Comment action.
Aas9 Zerocms 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started