Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
born to k!ll vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1427
Directory traversal vulnerability in download_pdf.php in AssetMan 2.4a and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the pdf_file parameter.
Assetman Assetman
1 EDB exploit
NA
CVE-2007-1509
Directory traversal vulnerability in enkrypt.php in Sascha Schroeder krypt (aka Holtstraeter Rot 13) allows remote malicious users to read arbitrary files via a .. (dot dot) in the datei parameter.
Holtstraeter Rot 13
1 EDB exploit
NA
CVE-2010-4860
SQL injection vulnerability in product_desc.php in MyPhpAuction 2010 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Galaxyscriptz Myphpauction 2010
1 EDB exploit
NA
CVE-2008-6991
SQL injection vulnerability in public/page.php in Websens CMSbright allows remote malicious users to execute arbitrary SQL commands via the id_rub_page parameter.
Cmsbright Cmsbright
1 EDB exploit
NA
CVE-2011-0516
SQL injection vulnerability in mainx_a.php in E-PROMPT C BetMore Site Suite 4.0 up to and including 4.2.0 allows remote malicious users to execute arbitrary SQL commands via the bid parameter.
Epromptc Betmore Site Suite 4.2.0
Epromptc Betmore Site Suite 4.0
1 EDB exploit
NA
CVE-2011-0646
SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Anserv Php Low Bids
1 EDB exploit
NA
CVE-2007-5069
Directory traversal vulnerability in data/compatible.php in the Nuke Mobile Entertainment 1 addon for PHP-Nuke allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the module_name parameter.
Massimo Chioni Mobile Entertainment Module 1
1 EDB exploit
NA
CVE-2007-5314
PHP remote file inclusion vulnerability in system/funcs/xkurl.php in xKiosk WEB 3.0.1i, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the PEARPATH parameter.
Xkiosk Xkiosk Web 3.0.1i
1 EDB exploit
NA
CVE-2010-4905
SQL injection vulnerability in article_details.php in Softbiz Article Directory Script allows remote malicious users to execute arbitrary SQL commands via the sbiz_id parameter.
Softbizscripts Article Directory Script
1 EDB exploit
NA
CVE-2010-4911
SQL injection vulnerability in classi/detail.php in PHP Classifieds Ads allows remote malicious users to execute arbitrary SQL commands via the sid parameter.
Sellatsite Php Classifieds Ads
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »