Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6805
SQL injection vulnerability in newsdetail.asp in Enthrallweb eJobs allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Enthrallweb Ejobs
1 EDB exploit
NA
CVE-2006-6806
SQL injection vulnerability in newsdetail.asp in Enthrallweb eMates 1.0 allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Enthrallweb Emates 1.0
1 EDB exploit
NA
CVE-2006-6821
myprofile.asp in Enthrallweb eNews does not properly validate the MM_recordId parameter during profile updates, which allows remote authenticated users to modify certain profile fields of another account by specifying that account's username in a modified MM_recordId paramet...
Enthrallweb Enews
1 EDB exploit
NA
CVE-2006-6846
Multiple SQL injection vulnerabilities in While You Were Out (WYWO) InOut Board 1.0 allow remote malicious users to execute arbitrary SQL commands via (1) the num parameter in (a) phonemessage.asp, (2) the catcode parameter in (b) faqDsp.asp, and the (3) Username and (4) Password...
Cybercoded While You Were Out Inout Board 1.0
1 EDB exploit
NA
CVE-2006-7152
default.asp in ASP-Nuke Community 1.5 and previous versions allows remote malicious users to gain privileges by setting certain pseudo cookie values.
Asp-nuke Asp-nuke 1.0
Asp-nuke Asp-nuke 1.2
Asp-nuke Asp-nuke 1.3
Asp-nuke Asp-nuke Rc2
Asp-nuke Asp-nuke Rc3
Asp-nuke Asp-nuke 1.5
Asp-nuke Asp-nuke Rc1
1 EDB exploit
NA
CVE-2006-4796
Cross-site scripting (XSS) vulnerability in forum.asp in Snitz Forums 2000 3.4.06 allows remote malicious users to inject arbitrary web script or HTML via the sortorder parameter (strtopicsortord variable).
Snitz Communications Snitz Forums 2000 3.4.06
1 EDB exploit
NA
CVE-2006-4872
SQL injection vulnerability in search.asp in Keyvan1 (aka Keyvan Janghorbani) ECardPro 2.0 allows remote malicious users to execute arbitrary SQL commands via the keyword parameter.
Keyvan1 Ecardpro 2.0
1 EDB exploit
NA
CVE-2006-4891
SQL injection vulnerability in ArticlesTableview.asp in Techno Dreams Articles & Papers Package 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the key parameter.
Techno Dreams Articles And Papers Package
1 EDB exploit
NA
CVE-2006-4945
Multiple PHP remote file inclusion vulnerabilities in Cardway (aka Frederic Boudaud) DigitalWebShop 1.128 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the _PHPLIB[libdir] parameter to (1) rechnung.php or (2) prepend.php.
Cardway Digitalwebshop 1.110
Cardway Digitalwebshop 1.120
Cardway Digitalwebshop 1.128
1 EDB exploit
NA
CVE-2006-4946
PHP remote file inclusion vulnerability in include/startup.inc.php in CMSDevelopment Business Card Web Builder (BCWB) 0.99, and possibly 2.5 Beta and previous versions, allows remote malicious users to execute arbitrary PHP code via a URL in the root_path parameter.
Cmsdevelopment Business Card Web Builder
Cmsdevelopment Business Card Web Builder 0.99
Cmsdevelopment Business Card Web Builder 2.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »