Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
born to k!ll vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-4911
SQL injection vulnerability in classi/detail.php in PHP Classifieds Ads allows remote malicious users to execute arbitrary SQL commands via the sid parameter.
Sellatsite Php Classifieds Ads
1 EDB exploit
7.5
CVSSv2
CVE-2010-4905
SQL injection vulnerability in article_details.php in Softbiz Article Directory Script allows remote malicious users to execute arbitrary SQL commands via the sbiz_id parameter.
Softbizscripts Article Directory Script
1 EDB exploit
7.5
CVSSv2
CVE-2010-4860
SQL injection vulnerability in product_desc.php in MyPhpAuction 2010 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Galaxyscriptz Myphpauction 2010
1 EDB exploit
7.5
CVSSv2
CVE-2011-0646
SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Anserv Php Low Bids
1 EDB exploit
7.5
CVSSv2
CVE-2011-0516
SQL injection vulnerability in mainx_a.php in E-PROMPT C BetMore Site Suite 4.0 up to and including 4.2.0 allows remote malicious users to execute arbitrary SQL commands via the bid parameter.
Epromptc Betmore Site Suite 4.2.0
Epromptc Betmore Site Suite 4.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-0458
Multiple SQL injection vulnerabilities in NetArt Media Blog System 1.5 allow remote malicious users to execute arbitrary SQL commands via the (1) cat parameter to index.php and the (2) note parameter to blog.php.
Netartmedia Blog System 1.5
1 EDB exploit
7.5
CVSSv2
CVE-2008-6991
SQL injection vulnerability in public/page.php in Websens CMSbright allows remote malicious users to execute arbitrary SQL commands via the id_rub_page parameter.
Cmsbright Cmsbright
1 EDB exploit
7.5
CVSSv2
CVE-2008-5637
SQL injection vulnerability in blog.asp in ParsBlogger (Pb) allows remote malicious users to execute arbitrary SQL commands via the wr parameter.
Parsblogger Parsblogger Nil
1 EDB exploit
10
CVSSv2
CVE-2007-5890
Directory traversal vulnerability in index.php in easyGB 2.1.1 allows remote malicious users to include arbitrary files via the DatabaseType parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Easygb Easygb 2.1.1
1 EDB exploit
6.8
CVSSv2
CVE-2007-5674
Directory traversal vulnerability in index.php in InstaGuide Weather (aka Weather for PHP) 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the PageName parameter.
Instaguide Weather 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »