Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aria vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6080
Multiple SQL injection vulnerabilities in categories.asp in gNews Publisher allow remote malicious users to execute arbitrary SQL commands via the (1) catID or (2) editorID parameter.
Gazatem Technologies Gnews Publisher
1 EDB exploit
NA
CVE-2006-6189
SQL injection vulnerability in displayCalendar.asp in ClickTech Click Blog allows remote malicious users to execute arbitrary SQL commands via the date parameter.
Clicktech Clickblog
1 EDB exploit
NA
CVE-2006-6209
Multiple SQL injection vulnerabilities in MidiCart ASP Shopping Cart and ASP Plus Shopping Cart allow remote malicious users to execute arbitrary SQL commands via the (1) id2006quant parameter to (a) item_show.asp, or the (2) maingroup or (3) secondgroup parameter to (b) item_lis...
Midicart Software Midicart Asp Plus Shopping Cart
Midicart Software Midicart Asp Shopping Cart
1 EDB exploit
NA
CVE-2006-6243
Multiple SQL injection vulnerabilities in index.asp in FipsSHOP allow remote malicious users to execute arbitrary SQL commands via the (1) cat or (2) did parameter.
Fipsasp Fipsshop
1 EDB exploit
NA
CVE-2006-6355
SQL injection vulnerability in default.asp in DuWare DuClassmate allows remote malicious users to execute arbitrary SQL commands via the iCity parameter. NOTE: the iState parameter is already covered by CVE-2005-2049.
Duware Duclassmate
1 EDB exploit
NA
CVE-2006-6367
Multiple SQL injection vulnerabilities in detail.asp in DUware DUdownload 1.1, and possibly earlier, allow remote malicious users to execute arbitrary SQL commands via the (1) iFile or (2) action parameter. NOTE: the iType parameter is already covered by CVE-2005-3976.
Duware Dunews 1.0
Duware Dunews 1.1
Duware Dudownload 1.0
Duware Dudownload 1.1
Duware Dupaypal 3.0
Duware Dupaypal 3.1
Duware Dupaypal Pro 3.0
Duware Dupaypal Pro 3.1
1 EDB exploit
NA
CVE-2006-6937
SQL injection vulnerability in displaypic.asp in Xtreme ASP Photo Gallery allows remote malicious users to inject arbitrary SQL commands via the sortorder parameter.
Pensacola Web Designs Xtremeasp Photogallery 2.0
1 EDB exploit
NA
CVE-2007-4208
SQL injection vulnerability in default.asp in Next Gen Portfolio Manager allows remote malicious users to execute arbitrary SQL commands via the (1) Users_Email or (2) Users_Password parameter in an ExecuteTheLogin action.
Morgan Ids Next Gen Portfolio Manager
1 EDB exploit
NA
CVE-2006-6210
SQL injection vulnerability in listpics.asp in ASP ListPics 5.0 allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Iisworks Asp Listpics 5.0
1 EDB exploit
NA
CVE-2006-6207
SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote malicious users to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor disputes this issue, stating that it is a forced SQL error
Lynx Internet Solutions Evolve Merchant
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »