Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crackers_child vulnerabilities and exploits
(subscribe to this query)
440
VMScore
CVE-2006-5535
Multiple cross-site scripting (XSS) vulnerabilities in WebHostManager (WHM) 10.8.0 cPanel 10.9.0 R50 allow remote malicious users to inject arbitrary web script or HTML via the (1) theme parameter to scripts/dosetmytheme and the (2) template parameter to scripts2/editzonetemplate...
Cpanel Cpanel 10.9.0 R50
2 EDB exploits
685
VMScore
CVE-2007-1714
Cross-site scripting (XSS) vulnerability in index.php in CcCounter 2.0 allows remote malicious users to inject arbitrary web script or HTML via dir parameter.
Cccounter Cccounter 2.0
1 EDB exploit
755
VMScore
CVE-2006-5251
PHP remote file inclusion vulnerability in index.php in Deep CMS 2.0a allows remote malicious users to execute arbitrary PHP code via a URL in the ConfigDir parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Deep Cms Deep Cms 2.0a
1 EDB exploit
435
VMScore
CVE-2007-6141
Cross-site scripting (XSS) vulnerability in vBTube.php in vBTube 1.1 Beta allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
Vbtube Vbtube 1.1 Beta
1 EDB exploit
755
VMScore
CVE-2006-4230
Multiple PHP remote file inclusion vulnerabilities in index.php in Lizge V.20 Web Portal allow remote malicious users to execute arbitrary PHP code via a URL in the (1) lizge or (2) bade parameters.
Lizge Lizge Web Portal 0.20
1 EDB exploit
755
VMScore
CVE-2008-4703
SQL injection vulnerability in news.php in BosDev BosNews 4.0 allows remote malicious users to execute arbitrary SQL commands via the article parameter.
Bosdev Bosnews 4
1 EDB exploit
435
VMScore
CVE-2008-0688
Cross-site scripting (XSS) vulnerability in catalog.php in Smartscript Domain Trader 2.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter in a viewcategory action.
Smartscript Domain Trader 2.0
1 EDB exploit
645
VMScore
CVE-2008-6736
Flat Calendar 1.1 does not properly restrict access to administrative functions, which allows remote malicious users to (1) add new events via calAdd.php, as reachable from admin/add.php, or (2) delete events via admin/deleteEvent.php. NOTE: this is only a vulnerability when the ...
Circulargenius Flat Calendar 1.1
1 EDB exploit
685
VMScore
CVE-2007-3315
Multiple PHP remote file inclusion vulnerabilities in YourFreeScreamer 1.0, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the serverPath parameter to bodyTemplate.php in (1) templates/Classic/, (2) templates/Classic Gues...
Yourfreescreamer Yourfreescreamer 1.0
1 EDB exploit
755
VMScore
CVE-2008-6092
phpscripts Ranking Script allows remote malicious users to bypass authentication and gain administrative access by sending an admin=ja cookie.
Phpscripts Ranking-script -
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »