Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aliaksandr hartsuyeu vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-0167
SQL injection vulnerability in MyPhPim 01.05 allows remote malicious users to execute arbitrary SQL commands via the (1) cal_id parameter in calendar.php3 and the (2) password field on the login page.
Myphpim Myphpim 01.05
2 EDB exploits
5.1
CVSSv2
CVE-2006-1569
Multiple SQL injection vulnerabilities in RedCMS 0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password parameters to (a) login.php or (b) register.php; or (3) u parameter to (c) profile.php.
Redcms Redcms 0.1
2 EDB exploits
6.4
CVSSv2
CVE-2006-1334
Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) entry and (2) email parameters to (a) print.php and (b) mail.php.
Maian Script World Maian Weblog
2 EDB exploits
7.5
CVSSv2
CVE-2011-1060
SQL injection vulnerability in the member function in classes/member.php in WSN Guest 1.24 allows remote malicious users to execute arbitrary SQL commands via the wsnuser cookie to index.php.
Webmastersite Wsn Guest 1.24
1 EDB exploit
7.5
CVSSv2
CVE-2006-0154
SQL injection vulnerability in showthread.php in 427BB 2.2 and 2.2.1 allows remote malicious users to execute arbitrary SQL commands via the ForumID parameter.
427bb Fourtwosevenbb 2.2
427bb Fourtwosevenbb 2.2.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-0160
SQL injection vulnerability in add_post.php3 in Venom Board 1.22 allows remote malicious users to execute arbitrary SQL commands via the (1) parent, (2) root, and (3) topic_id parameters to post.php3.
Venom Board Venom Board 1.22
1 EDB exploit
7.5
CVSSv2
CVE-2006-0209
SQL injection vulnerability in general_functions.php in TankLogger 2.4 allows remote malicious users to execute arbitrary SQL commands via the (1) livestock_id parameter to showInfo.php and (2) tank_id parameter, possibly to livestock.php.
Tanklogger Tanklogger 2.4
1 EDB exploit
7.5
CVSSv2
CVE-2006-0234
SQL injection vulnerability in index.php in microBlog 2.0 RC-10 allows remote malicious users to execute arbitrary SQL commands via the (1) month and (2) year parameters.
Microblog Microblog 2.0 Rc10
1 EDB exploit
4.3
CVSSv2
CVE-2006-0310
Cross-site scripting (XSS) vulnerability in aoblogger 2.3 allows remote malicious users to inject arbitrary Javascript via a javascript URI in the BBcode url tag.
Mike Helton Aoblogger 2.3
1 EDB exploit
5
CVSSv2
CVE-2006-0312
create.php in aoblogger 2.3 allows remote malicious users to bypass authentication and create new blog entries by setting the uza parameter to 1.
Mike Helton Aoblogger 2.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »