Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d3b4g vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-4772
SQL injection vulnerability in main/main.php in QuestCMS allows remote malicious users to execute arbitrary SQL commands via the obj parameter.
Questwork Questcms
1 EDB exploit
435
VMScore
CVE-2008-4774
Cross-site scripting (XSS) vulnerability in main/main.php in QuestCMS allows remote malicious users to inject arbitrary web script or HTML via the cx parameter.
Questwork Questcms
1 EDB exploit
755
VMScore
CVE-2008-6216
SQL injection vulnerability in cadena_ofertas_ext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote malicious users to execute arbitrary SQL commands via the OfertaID parameter.
Bookingcentre Booking System For Hotels Group -
1 EDB exploit
755
VMScore
CVE-2008-6246
SQL injection vulnerability in category.php in Scripts For Sites (SFS) EZ Webring allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Scripts-for-sites Ez Webring -
1 EDB exploit
755
VMScore
CVE-2008-6326
SQL injection vulnerability in login.php in Simple Customer as downloaded on 20081118 allows remote malicious users to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inf...
Simplecustomer Simple Customer -
1 EDB exploit
435
VMScore
CVE-2012-6589
Cross-site scripting (XSS) vulnerability in search.php in MYRE Business Directory allows remote malicious users to inject arbitrary web script or HTML via the look parameter.
Myrephp Myre Business Directory -
1 EDB exploit
655
VMScore
CVE-2008-5970
SQL injection vulnerability in profile_social.php in i-Net Solution Orkut Clone allows remote authenticated users to execute arbitrary SQL commands via the id parameter.
I-netsolution Orkut Clone Nil
1 EDB exploit
755
VMScore
CVE-2010-5289
Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2.0 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in the first argum...
Incredimail Incredimail 2.0
1 EDB exploit
435
VMScore
CVE-2008-6215
Cross-site scripting (XSS) vulnerability in cadena_ofertas_ext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote malicious users to inject arbitrary web script or HTML via the OfertaID parameter.
Bookingcentre Booking System For Hotels Group -
1 EDB exploit
755
VMScore
CVE-2008-6332
SQL injection vulnerability in login.php in Simple Customer 1.2 allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Simplecustomer Simple Customer 1.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »