Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-1616
SQL injection vulnerability in index.php in ScriptMagix Lyrics 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the recid parameter.
Scriptmagix Scriptmagix Lyrics
1 EDB exploit
755
VMScore
CVE-2007-1617
SQL injection vulnerability in index.php in ScriptMagix Recipes 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Scriptmagix Scriptmagix Recipes
1 EDB exploit
755
VMScore
CVE-2007-1618
SQL injection vulnerability in index.php in ScriptMagix FAQ Builder 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Scriptmagix Scriptmagix Faq Builder
1 EDB exploit
755
VMScore
CVE-2007-1619
SQL injection vulnerability in viewcomments.php in ScriptMagix Photo Rating 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the phid parameter.
Scriptmagix Scriptmagix Photo Rating
1 EDB exploit
755
VMScore
CVE-2005-3952
SQL injection vulnerability in PHP Labs Top Auction allows remote malicious users to execute arbitrary SQL commands via the (1) category and (2) type parameters to viewcat.php, or (3) certain search parameters. NOTE: later a disclosure reported the affected version as 1.0.
Php Labs Top Auction 1.0
1 EDB exploit
685
VMScore
CVE-2007-0144
Cross-site scripting (XSS) vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated malicious users to inject arbitrary web script or HTML via the ordernum parameter.
Digitizing Quote And Ordering System Digitizing Quote And Ordering System 1.0
1 EDB exploit
755
VMScore
CVE-2007-0196
SQL injection vulnerability in admin_check_user.asp in Motionborg Web Real Estate 2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username field (txtUserName parameter) and possibly other parameters. NOTE: some details were obtain...
Motionborg Motionborg Web Real Estate
1 EDB exploit
685
VMScore
CVE-2007-0225
Cross-site scripting (XSS) vulnerability in shopcustadmin.asp in VP-ASP Shopping Cart 6.09 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Virtual Programming Vp-asp 6.09
1 EDB exploit
755
VMScore
CVE-2007-0226
SQL injection vulnerability in wbsearch.aspx in uniForum 4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the "by User" field (aka the TXbyuser parameter).
Uniforum Uniforum
1 EDB exploit
685
VMScore
CVE-2007-0301
PHP remote file inclusion vulnerability in _admin/admin_menu.php in FdWeB Espace Membre 2.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path parameter.
Fdweb Espace Membre
Fdweb Espace Membre 2.01
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »