Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alan ward vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2948
A-CART 2.0 stores the acart2_0.mdb file under the web document root with insufficient access control, which allows remote malicious users to obtain username and password information.
Alan Ward A-cart
NA
CVE-2005-4064
Multiple SQL injection vulnerabilities in A-FAQ 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) faqid parameter to faqDspItem.asp and (2) catcode parameter to faqDsp.asp.
Alan Ward A-faq 1.0
2 EDB exploits
NA
CVE-2006-6111
Multiple SQL injection vulnerabilities in Alan Ward A-Cart Pro 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) productid parameter in product.asp or (2) search parameter in search.asp. NOTE: the category.asp vector is already covered by CVE-2004-187...
Alan Ward A-cart 2.0
1 EDB exploit
NA
CVE-2004-1873
SQL injection vulnerability in category.asp in A-CART Pro and A-CART 2.0 allows remote malicious users to gain privileges via the catcode parameter.
Alan Ward A-cart 2.0
2 EDB exploits
NA
CVE-2004-1874
Multiple cross-site scripting (XSS) vulnerabilities in (1) deliver.asp and (2) billing.asp in A-CART Pro and A-CART 2.0 allow remote malicious users to inject arbitrary web script or HTML via the user information forms.
Alan Ward A-cart 2.0
NA
CVE-2006-6831
SQL injection vulnerability in faqDsp.asp in aFAQ 1.0 allows remote malicious users to execute arbitrary SQL commands via the catcode parameter.
Alan Ward A-faq 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started