Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-0569
SQL injection vulnerability in xNews.php in xNews 1.3 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a shownews action.
X-dev Xnews 1.3
1 EDB exploit
7.5
CVSSv2
CVE-2007-0577
PHP remote file inclusion vulnerability in function.inc.php in ACGVclick 0.2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path parameter.
Acgvclick Acgvclick 0.2.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-0582
SQL injection vulnerability in default.asp in ChernobiLe 1.0 allows remote malicious users to execute arbitrary SQL commands via the User (username) field.
Chernobile Chernobile 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-0663
SQL injection vulnerability in index.php in Eclectic Designs CascadianFAQ 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the qid parameter, a different vector than CVE-2007-0631. NOTE: The provenance of this information is unknown; t...
Eclectic Designs Cascadianfaq
Eclectic Designs Cascadianfaq 4.1
1 EDB exploit
6.8
CVSSv2
CVE-2006-6644
PHP remote file inclusion vulnerability in pages/meeting_constants.php in the Meeting (mx_meeting) 1.1.2 and previous versions module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Mxbb Meeting
1 EDB exploit
7.5
CVSSv2
CVE-2006-6645
PHP remote file inclusion vulnerability in language/lang_english/lang_admin.php in the Web Links (mx_links) 2.05 and previous versions module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mxbb Web Links
1 EDB exploit
7.5
CVSSv2
CVE-2007-0224
SQL injection vulnerability in shopgiftregsearch.asp in VP-ASP Shopping Cart 6.09 and previous versions allows remote malicious users to execute arbitrary SQL commands via the LoginLastname parameter.
Virtual Programming Vp-asp 6.09
1 EDB exploit
6.8
CVSSv2
CVE-2007-0225
Cross-site scripting (XSS) vulnerability in shopcustadmin.asp in VP-ASP Shopping Cart 6.09 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Virtual Programming Vp-asp 6.09
1 EDB exploit
6.4
CVSSv2
CVE-2006-2638
SQL injection vulnerability in member.asp in qjForum allows remote malicious users to execute arbitrary SQL commands via the uName parameter.
Qjstudios Qjforum
1 EDB exploit
6
CVSSv2
CVE-2006-6911
SQL injection vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated users to execute arbitrary SQL commands via the ordernum parameter.
Digitizing Quote And Ordering System Digitizing Quote And Ordering System 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »