Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alphanix vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2008-6321
CF Shopkart 5.2.2 stores cfshopkart52.mdb under the web root with insufficient access control, which allows remote malicious users to obtain sensitive information, such as usernames and passwords, via a direct request.
Cfshopkart Cf Shopkart 5.2.2
1 EDB exploit
755
VMScore
CVE-2008-5559
SQL injection vulnerability in sendcard.cfm in PostEcards allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Dazzlindonna Postecards
1 EDB exploit
505
VMScore
CVE-2008-5560
PostEcards stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for postcards.mdb.
Dazzlindonna Postecards
1 EDB exploit
755
VMScore
CVE-2008-5588
SQL injection vulnerability in rankup.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the siteID parameter.
Katywhitton Rankem
1 EDB exploit
755
VMScore
CVE-2008-5589
SQL injection vulnerability in processlogin.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the (1) txtusername parameter (aka username field) or the (2) txtpassword parameter (aka password field). NOTE: some of these details are obt...
Katywhitton Rankem
1 EDB exploit
435
VMScore
CVE-2008-5591
Cross-site scripting (XSS) vulnerability in login.asp in Nightfall Personal Diary 1.0 allows remote malicious users to inject arbitrary web script or HTML via the username parameter and possibly other "login fields." NOTE: some of these details are obtained from third p...
Iwrite Nightfall Personal Diary 1.0
1 EDB exploit
505
VMScore
CVE-2008-5592
Nightfall Personal Diary 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for users-zza21.mdb.
Iwrite Nightfall Personal Diary 1.0
1 EDB exploit
755
VMScore
CVE-2008-5595
SQL injection vulnerability in detail.asp in ASP AutoDealer allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Aspapps Asp Autodealer Nil
1 EDB exploit
505
VMScore
CVE-2008-5601
User Engine Lite ASP stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request for users.mdb.
Robs-projects Asp User Engine Nil
1 EDB exploit
755
VMScore
CVE-2008-5767
SQL injection vulnerability in authors.asp in gNews Publisher allows remote malicious users to execute arbitrary SQL commands via the authorID parameter.
Gazatem Gnews Publisher Nil
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »