Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cwh underground vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2983
SQL injection vulnerability in index.php in Demo4 CMS 01 Beta allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Cwh Underground Demo4 Cms 01
1 EDB exploit
NA
CVE-2008-3180
Multiple cross-site scripting (XSS) vulnerabilities in upload/file/language_menu.php in ContentNow CMS 1.4.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) pageid parameter or (2) PATH_INFO.
Cwh Underground Contentnow Cms 1.4.1
1 EDB exploit
NA
CVE-2008-6431
Multiple cross-site scripting (XSS) vulnerabilities in BMForum 5.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) outpused parameter to index.php, the (2) footer_copyright and (3) verandproname parameters to newtem/footer/bsd01footer.php, and the ...
Bmforum Bmforum 5.6
3 EDB exploits
NA
CVE-2008-2987
Multiple cross-site scripting (XSS) vulnerabilities in Benja CMS 0.1 allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) admin_edit_submenu.php, (2) admin_new_submenu.php, and (3) admin_edit_topmenu.php in admin/.
Benjacms Benja Cms 0.1
3 EDB exploits
NA
CVE-2008-5955
SQL injection vulnerability in show.php in Wbstreet (aka PHPSTREET Webboard) 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Phpstreet Webboard 1.0
2 EDB exploits
NA
CVE-2008-3388
Multiple SQL injection vulnerabilities in Def-Blog 1.0.3 allow remote malicious users to execute arbitrary SQL commands via the article parameter to (1) comaddok.php and (2) comlook.php.
Easy-script Def Blog 1.0.3
2 EDB exploits
NA
CVE-2008-5163
Multiple SQL injection vulnerabilities in The Rat CMS Pre-Alpha 2 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) viewarticle.php and (2) viewarticle2.php.
Theratstudios The Rat Cms 2
2 EDB exploits
NA
CVE-2008-3034
Multiple SQL injection vulnerabilities in RSS-aggregator 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) IdFlux parameter to admin/fonctions/supprimer_flux.php and the (2) IdTag parameter to admin/fonctions/supprimer_tag.php.
Rss Aggregator Rss Aggregator 1.0
2 EDB exploits
NA
CVE-2008-5164
Multiple cross-site scripting (XSS) vulnerabilities in The Rat CMS Pre-Alpha 2 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to (a) viewarticle.php and (b) viewarticle2.php and the (2) PATH_INFO to viewarticle.php.
Theratstudios The Rat Cms 2
2 EDB exploits
NA
CVE-2008-6788
SQL injection vulnerability in MindDezign Photo Gallery 2.2, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter in an info action to index.php.
Minddezign Photo Gallery 2.2
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »