Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bi0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4349
Cross-site request forgery (CSRF) vulnerability in administration/administrators.php in Link Up Gold 5.0 allows remote malicious users to hijack the authentication of administrators for requests that create administrative accounts.
Phpwebscripts Link Up Gold 5.0
1 EDB exploit
NA
CVE-2009-4906
Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote malicious users to hijack the authentication of administrators for requests that change passwords.
Accscripts Acc Php Email 1.1
1 EDB exploit
NA
CVE-2009-4828
Cross-site request forgery (CSRF) vulnerability in administration/admins.php in Ad Manager Pro (aka AdManagerPro) 3.0 allows remote malicious users to hijack the authentication of administrators for requests that create new administrative users via an admin_created action. NOTE: ...
Phpwebscripts Ad Manager Pro 3.0
1 EDB exploit
NA
CVE-2009-4382
Cross-site scripting (XSS) vulnerability in module.php in PHPFABER CMS, possibly 1.3.36, allows remote malicious users to inject arbitrary web script or HTML via the mod parameter.
Phpfaber Phpfaber Content Management System 1.3.36
1 EDB exploit
NA
CVE-2009-4601
Cross-site scripting (XSS) vulnerability in basic_search_result.php in Zeeways ZeeJobsite 3x allows remote malicious users to inject arbitrary web script or HTML via the title parameter.
Zeeways Zeejobsite 3.0
1 EDB exploit
NA
CVE-2009-4381
Cross-site scripting (XSS) vulnerability in index.php in texmedia Million Pixel Script 3 allows remote malicious users to inject arbitrary web script or HTML via the pa parameter. NOTE: some of these details are obtained from third party information.
Texmedia Million Pixel Script 3.0
1 EDB exploit
NA
CVE-2008-6498
Cross-site request forgery (CSRF) vulnerability in security/xamppsecurity.php in XAMPP 1.6.8 allows remote malicious users to hijack the authentication of users for requests that change a certain .htaccess password via the xampppasswd parameter.
Apachefriends Xampp 1.6.8
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started