Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aj square aj auction vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6965
AJ Square AJ Auction OOPD, Pro Platinum Skin #1, Pro Platinum Skin #2, and Web 2.0 send a redirect but do not exit when certain scripts are called directly, which allows remote malicious users to bypass authentication via a direct request to (1) site.php, (2) auction.php, (3) mai...
Aj Square Aj Auction Web 2.0
Aj Square Aj Auction 2.0
Aj Square Aj Auction 1.0
Aj Square Aj Auction
1 EDB exploit
7.5
CVSSv2
CVE-2008-5212
SQL injection vulnerability in classifide_ad.php in AJ Auction 6.2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the item_id parameter.
Aj Square Aj Auction Web 2.0
Aj Square Aj Auction
Aj Square Aj Auction 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-2860
SQL injection vulnerability in category.php in AJSquare AJ Auction Pro web 2.0 allows remote malicious users to execute arbitrary SQL commands via the cate_id parameter.
Aj Square Aj Auction Web 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6003
SQL injection vulnerability in sellers_othersitem.php in AJ Auction Pro Platinum 2 allows remote malicious users to execute arbitrary SQL commands via the seller_id parameter.
Aj Square Aj Auction 2.0
1 EDB exploit
4.3
CVSSv2
CVE-2008-6004
Cross-site scripting (XSS) vulnerability in search.php in AJ Auction Pro Platinum 2 allows remote malicious users to inject arbitrary web script or HTML via the product parameter.
Aj Square Aj Auction 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6414
SQL injection vulnerability in detail.php in AJ Auction Pro Platinum Skin 2 allows remote malicious users to execute arbitrary SQL commands via the item_id parameter.
Aj Square Aj Auction 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6966
AJ Square AJ Auction Pro Platinum Skin #1 sends a redirect but does not exit when it is called directly, which allows remote malicious users to bypass authentication via a direct request to admin/user.php.
Aj Square Aj Auction 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-1298
SQL injection vulnerability in subcat.php in AJ Auction 1.0 allows remote malicious users to execute arbitrary SQL commands via the cate_id parameter.
Aj Square Ajauction 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started