Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
antisecurity vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-5053
SQL injection vulnerability in the XOBBIX (com_xobbix) component 1.0.1 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the prodid parameter in a prod_desc action to index.php.
Php-shop-system Com Xobbix 1.0.1
1 EDB exploit
6.8
CVSSv2
CVE-2010-5040
PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery plugin 0.94 for Nucleus allows remote malicious users to execute arbitrary PHP code via a URL in the DIR_NUCLEUS parameter. NOTE: some of these details are obtained from third party inform...
John Bradshaw Np Gallery Plugin 0.94
1 EDB exploit
7.5
CVSSv2
CVE-2010-5041
SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote malicious users to execute arbitrary SQL commands via the id parameter in a plugin action.
John Bradshaw Np Gallery Plugin 0.94
1 EDB exploit
6.8
CVSSv2
CVE-2010-2313
Directory traversal vulnerability in index.php in Anodyne Productions SIMM Management System (SMS) 2.6.10, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the page parameter to index.php. NOTE: some of these details a...
Anodyne-productions Simm Management System 2.6.10
1 EDB exploit
6.8
CVSSv2
CVE-2010-2314
PHP remote file inclusion vulnerability in nucleus/plugins/NP_Twitter.php in the NP_Twitter Plugin 0.8 and 0.9 for Nucleus, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the DIR_PLUGINS parameter. NOTE: some of these de...
Edmondhui.homeip Np Twitter 0.8
Edmondhui.homeip Np Twitter 0.9
1 EDB exploit
7.5
CVSSv2
CVE-2010-2143
Directory traversal vulnerability in index.php in Symphony CMS 2.0.7 allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the mode parameter.
Getsymphony Symphony 2.0.7
1 EDB exploit
7.5
CVSSv2
CVE-2010-2047
SQL injection vulnerability in index.php in JE CMS 1.0.0 and 1.1 allows remote malicious users to execute arbitrary SQL commands via the categoryid parameter in a viewcategory action. NOTE: some of these details are obtained from third party information.
Joenasejes Je Cms 1.1
Joenasejes Je Cms 1.0.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-2035
Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Percha Com Perchagallery 1.6
1 EDB exploit
7.5
CVSSv2
CVE-2010-2036
Directory traversal vulnerability in the Percha Fields Attach (com_perchafieldsattach) component 1.x for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Percha Com Perchafieldsattach 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-2033
Directory traversal vulnerability in the Percha Multicategory Article (com_perchacategoriestree) component 0.6 for Joomla! allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
Percha Com Perchacategoriestree 0.6
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »