Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cwh underground vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-2983
SQL injection vulnerability in index.php in Demo4 CMS 01 Beta allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Cwh Underground Demo4 Cms 01
1 EDB exploit
435
VMScore
CVE-2008-3180
Multiple cross-site scripting (XSS) vulnerabilities in upload/file/language_menu.php in ContentNow CMS 1.4.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) pageid parameter or (2) PATH_INFO.
Cwh Underground Contentnow Cms 1.4.1
1 EDB exploit
445
VMScore
CVE-2008-2987
Multiple cross-site scripting (XSS) vulnerabilities in Benja CMS 0.1 allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) admin_edit_submenu.php, (2) admin_new_submenu.php, and (3) admin_edit_topmenu.php in admin/.
Benjacms Benja Cms 0.1
3 EDB exploits
445
VMScore
CVE-2008-6431
Multiple cross-site scripting (XSS) vulnerabilities in BMForum 5.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) outpused parameter to index.php, the (2) footer_copyright and (3) verandproname parameters to newtem/footer/bsd01footer.php, and the ...
Bmforum Bmforum 5.6
3 EDB exploits
760
VMScore
CVE-2008-5955
SQL injection vulnerability in show.php in Wbstreet (aka PHPSTREET Webboard) 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Phpstreet Webboard 1.0
2 EDB exploits
760
VMScore
CVE-2008-5163
Multiple SQL injection vulnerabilities in The Rat CMS Pre-Alpha 2 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) viewarticle.php and (2) viewarticle2.php.
Theratstudios The Rat Cms 2
2 EDB exploits
440
VMScore
CVE-2008-5164
Multiple cross-site scripting (XSS) vulnerabilities in The Rat CMS Pre-Alpha 2 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to (a) viewarticle.php and (b) viewarticle2.php and the (2) PATH_INFO to viewarticle.php.
Theratstudios The Rat Cms 2
2 EDB exploits
520
VMScore
CVE-2008-6788
SQL injection vulnerability in MindDezign Photo Gallery 2.2, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter in an info action to index.php.
Minddezign Photo Gallery 2.2
2 EDB exploits
520
VMScore
CVE-2008-6789
SQL injection vulnerability in MindDezign Photo Gallery 2.2 allows remote malicious users to execute arbitrary SQL commands via the username parameter in a login action to the admin module in index.php, a different vector than CVE-2008-6788.
Minddezign Photo Gallery 2.2
2 EDB exploits
760
VMScore
CVE-2008-3388
Multiple SQL injection vulnerabilities in Def-Blog 1.0.3 allow remote malicious users to execute arbitrary SQL commands via the article parameter to (1) comaddok.php and (2) comlook.php.
Easy-script Def Blog 1.0.3
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »