Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alexander antipov vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2004-1563
Multiple cross-site scripting (XSS) vulnerabilities in w-Agora 4.1.6a allow remote malicious users to execute arbitrary web script or HTML via the (1) thread parameter to download_thread.php, (2) loginuser parameter to login.php, or (3) userid parameter to forgot_password.php.
W-agora W-agora 4.1.6a
3 EDB exploits
445
VMScore
CVE-2004-2511
Multiple cross-site scripting (XSS) vulnerabilities in DCP-Portal 5.3.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the year, (2) month, and (3) day parameters in calendar.php; (4) the cid and (5) url parameters in index.php; ...
Codeworx Technologies Dcp-portal 5.0.2
Codeworx Technologies Dcp-portal 4.1
Codeworx Technologies Dcp-portal 4.2
Codeworx Technologies Dcp-portal
Codeworx Technologies Dcp-portal 4.5.1
Codeworx Technologies Dcp-portal 5.0.1
Codeworx Technologies Dcp-portal 5.1
Codeworx Technologies Dcp-portal 5.2
Codeworx Technologies Dcp-portal 3.7
Codeworx Technologies Dcp-portal 4.0
Codeworx Technologies Dcp-portal 5.3
Codeworx Technologies Dcp-portal 5.3.1
3 EDB exploits
505
VMScore
CVE-2004-1564
CRLF injection vulnerability in subscribe_thread.php in w-Agora 4.1.6a allows remote malicious users to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the thread parameter.
W-agora W-agora 4.1.6a
1 EDB exploit
935
VMScore
CVE-2004-1441
Cross-site scripting (XSS) vulnerability in icq.cgi in Board Power 2.04PF allows remote malicious users to inject arbitrary web script or HTML via the action parameter.
Board Power Board Power 2.04pf
1 EDB exploit
755
VMScore
CVE-2004-1562
SQL injection vulnerability in redir_url.php in w-Agora 4.1.6a allows remote malicious users to execute arbitrary SQL commands via the key parameter.
W-agora W-agora 4.1.6a
1 EDB exploit
435
VMScore
CVE-2004-2512
CRLF injection vulnerability in calendar.php in DCP-Portal 5.3.2 and previous versions allows remote malicious users to conduct HTTP response splitting attacks to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the PHPSESSID parameter.
Codeworx Technologies Dcp-portal 5.0.2
Codeworx Technologies Dcp-portal 5.1
Codeworx Technologies Dcp-portal 3.7
Codeworx Technologies Dcp-portal 4.0
Codeworx Technologies Dcp-portal 4.1
Codeworx Technologies Dcp-portal 4.2
Codeworx Technologies Dcp-portal 5.3.1
Codeworx Technologies Dcp-portal
Codeworx Technologies Dcp-portal 5.2
Codeworx Technologies Dcp-portal 5.3
Codeworx Technologies Dcp-portal 4.5.1
Codeworx Technologies Dcp-portal 5.0.1
1 EDB exploit
645
VMScore
CVE-2003-1176
post_message_form.asp in Web Wiz Forums 6.34 up to and including 7.5, when quote mode is used, allows remote malicious users to read or write to private forums by modifying the FID (forum ID) parameter.
Bdc Enterprises Web Wiz Forums 6.34
Bdc Enterprises Web Wiz Forums 7.01
Bdc Enterprises Web Wiz Forums 7.5
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started