Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
condemned vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2008-5949
Multiple PHP remote file inclusion vulnerabilities in ccTiddly 1.7.4 and 1.7.6 allow remote malicious users to execute arbitrary PHP code via a URL in the cct_base parameter to (1) index.php; (2) handle/proxy.php; (3) header.php, (4) include.php, and (5) workspace.php in includes...
Tiddlywiki Cctiddly 1.7.4
Tiddlywiki Cctiddly 1.7.6
2 EDB exploits
760
VMScore
CVE-2008-2501
Multiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and the (2) pid parameter to displayimage.php.
Henning Stoverud Phphotoalbum 0.5
2 EDB exploits
755
VMScore
CVE-2008-6919
profileedit.php TaskDriver 1.3 and previous versions allows remote malicious users to bypass authentication and gain administrative access by setting the auth cookie to "fook!admin."
Taskdriver Taskdriver
Taskdriver Taskdriver 1.2
1 EDB exploit
755
VMScore
CVE-2009-1853
Multiple SQL injection vulnerabilities in index.php in Kensei Board 2.0 BETA (aka 2.0.0b) and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) f and (2) t parameters in a showforum action.
Kenseiboard Kensei Board 1.1.0
Kenseiboard Kensei Board
1 EDB exploit
755
VMScore
CVE-2009-1509
SQL injection vulnerability in ajaxp_backend.php in MyioSoft AjaxPortal 3.0 allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Myiosoft Ajaxportal 3.0
1 EDB exploit
755
VMScore
CVE-2009-0110
SQL injection vulnerability in read.php in RiotPix 0.61 and previous versions allows remote malicious users to execute arbitrary SQL commands via the forumid parameter.
Riotpix Riotpix
Riotpix Riotpix 0.60
Riotpix Riotpix 0.52
Riotpix Riotpix 0.5
Riotpix Riotpix 0.51
Riotpix Riotpix .05
1 EDB exploit
755
VMScore
CVE-2008-5593
Multiple directory traversal vulnerabilities in index.php in Mini CMS 1.0.1 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) page and (2) admin parameters.
Bpowerhouse Mini Cms 1.0.1
1 EDB exploit
755
VMScore
CVE-2008-5594
Multiple directory traversal vulnerabilities in index.php in Mini Blog 1.0.1 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) page and (2) admin parameters.
Bpowerhouse Mini Blog 1.0.1
1 EDB exploit
755
VMScore
CVE-2008-5308
The Simple Forum 3.1d module for LoveCMS 1.6.2 Final does not properly restrict access to administrator functions, which allows remote malicious users to change the administrator password via a direct request to modules/simpleforum/admin/index.php.
Lovecms The Simple Forum 3.1d
1 EDB exploit
755
VMScore
CVE-2008-5287
SQL injection vulnerability in catagorie.php in Werner Hilversum FAQ Manager 1.2 allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter.
Scripts4you Faq Manager 1.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »