Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
comdev vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-6368
SQL Injection exists in the JomEstate PRO up to and including 3.7 component for Joomla! via the id parameter in a task=detailed action.
Comdev Jomestate Pro
1 EDB exploit
6.8
CVSSv2
CVE-2008-6250
SQL injection vulnerability in Comdev Web Blogger 4.1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the arcmonth parameter to a blog page.
Comdev Comdev Web Blogger 4.1
Comdev Comdev Web Blogger
1 EDB exploit
7.5
CVSSv2
CVE-2008-1872
SQL injection vulnerability in home.news.php in Comdev News Publisher 4.1.2 allows remote malicious users to execute arbitrary SQL commands via the arcmonth parameter. NOTE: some of these details are obtained from third party information.
Comdev Comdev News Publisher 4.1.2
1 EDB exploit
7.5
CVSSv2
CVE-2007-3081
PHP remote file inclusion vulnerability in sampleecommerce.php in Comdev eCommerce 4.1 allows remote malicious users to execute arbitrary PHP code via a URL in the path[docroot] parameter.
Comdev Comdev Ecommerce 4.1
7.5
CVSSv2
CVE-2007-3084
PHP remote file inclusion vulnerability in sampleblogger.php in Comdev Web Blogger 4.1 allows remote malicious users to execute arbitrary PHP code via a URL in the path[docroot] parameter, a different vector than CVE-2006-5441.
Comdev Comdev Web Blogger 4.1
7.5
CVSSv2
CVE-2007-2422
Multiple PHP remote file inclusion vulnerabilities in Modules Builder (modbuild) 4.1 for Comdev One Admin allow remote malicious users to execute arbitrary PHP code via a URL in the path[docroot] parameter to (1) config-bak.php or (2) config.php. NOTE: CVE disputes this vulnerabi...
Comdev Modules Builder 4.1
6.8
CVSSv2
CVE-2006-6045
Multiple PHP remote file inclusion vulnerabilities in Comdev One Admin Pro 4.1 allow remote malicious users to execute arbitrary PHP code via a URL in the path[skin] parameter to (1) adminfoot.php, (2) adminhead.php, or (3) adminlogin.php.
Comdev Comdev One Admin Pro 4.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-5438
PHP remote file inclusion vulnerability in adminfoot.php in Comdev Forum 4.1, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the path[docroot] parameter. NOTE: the provenance of this information is unknown; the details a...
Comdev Comdev Forum 4.1
7.5
CVSSv2
CVE-2006-5439
PHP remote file inclusion vulnerability in adminfoot.php in Comdev Misc Tools 4.1, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the path[docroot] parameter. NOTE: the provenance of this information is unknown; the deta...
Comdev Comdev Misc Tools 4.1
7.5
CVSSv2
CVE-2006-5440
PHP remote file inclusion vulnerability in adminfoot.php in Comdev Form Designer 4.1, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the path[docroot] parameter. NOTE: the provenance of this information is unknown; the d...
Comdev Comdev Form Designer 4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »