Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aria vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6523
Cross-site scripting (XSS) vulnerability in mail/manage.html in BoxTrapper in cPanel 11 allows remote malicious users to inject arbitrary web script or HTML via the account parameter.
Cpanel Cpanel 11
1 EDB exploit
NA
CVE-2007-3987
SQL injection vulnerability in SearchResults.asp in ImageRacer 1.0, when WordSearchCrit is enabled, allows remote malicious users to execute arbitrary SQL commands via the SearchWord parameter.
Junction Quest Image Racer 1.0
1 EDB exploit
NA
CVE-2007-4022
Cross-site scripting (XSS) vulnerability in frontend/x/htaccess/changepro.html in cPanel 10.9.1 allows remote malicious users to inject arbitrary web script or HTML via the resname parameter.
Cpanel Cpanel 10.9.1
1 EDB exploit
NA
CVE-2007-4095
SQL injection vulnerability in BSM Store Dependent Forums 1.02 allows remote malicious users to execute arbitrary SQL commands via a Username field in an unspecified component, probably the FrmUserName parameter in login.asp.
Bsm Store Dependent Forums 1.0.2
1 EDB exploit
NA
CVE-2007-4106
SQL injection vulnerability in login.asp in CodeWidgets Pay Roll - Time Sheet and Punch Card Application With Web Interface allows remote malicious users to execute arbitrary SQL commands via the Password parameter.
Codewidgets Pay Roll - Time Sheet
Codewidgets Punch Card
1 EDB exploit
NA
CVE-2007-4109
SQL injection vulnerability in sign_in.aspx in WebStore (Online Store Application Template) allows remote malicious users to execute arbitrary SQL commands via the Password parameter.
Codewidgets Online Event Registration Template
1 EDB exploit
NA
CVE-2007-4111
SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote malicious users to execute arbitrary SQL commands via the Password parameter.
Codewidgets Real Estate Listing Website Application Template
1 EDB exploit
NA
CVE-2008-7038
SQL injection vulnerability in the My_eGallery module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the gid parameter in a showgall action to modules.php. NOTE: this issue was disclosed by an unreliable researcher, so the details might be incorr...
Maxdev My Egallery -
2 EDB exploits
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8