Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
david ferreira vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-6631
Multiple cross-site scripting (XSS) vulnerabilities in index.php in BlogPHP 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) user parameter in a sendmessage action and the (2) username parameter when registering a new user, different vectors tha...
Blogphp Blogphp 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2005-3004
SQL injection vulnerability in Interakt MX Shop 3.2.0 allows remote malicious users to execute arbitrary SQL commands via the (1) idp, (2) id_ctg, or (3) id_prd parameters to the pages module in index.php.
Interakt Mx Shop 3.2.0
1 EDB exploit
6.8
CVSSv2
CVE-2004-2072
Cross-site scripting (XSS) vulnerability in index.php for Mambo Open Source 4.6, and possibly earlier versions, allows remote malicious users to execute script on other clients via the Itemid parameter.
Mambo Mambo Open Source 4.6
1 EDB exploit
4.3
CVSSv2
CVE-2004-1797
Cross-site scripting (XSS) vulnerability in search.php for FreznoShop 1.3.0 RC1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
1 EDB exploit
10
CVSSv2
CVE-2004-0300
SQL injection vulnerability in Online Store Kit 3.0 allows remote malicious users to inject arbitrary SQL and gain unauthorized access via (1) the cat parameter in shop.php, (2) the id parameter in more.php, (3) the cat_manufacturer parameter in shop_by_brand.php, or (4) the id p...
Ecommerce Corporation Online Store Kit 3.0 Lite
Ecommerce Corporation Online Store Kit 3.0 Pro
Ecommerce Corporation Online Store Kit 3.0 Standard
4 EDB exploits
6.8
CVSSv2
CVE-2004-0301
Cross-site scripting (XSS) vulnerability in more.php for Online Store Kit 3.0 allows remote malicious users to inject arbitrary HTML via the id parameter.
Ecommerce Corporation Online Store Kit 3.0 Pro
Ecommerce Corporation Online Store Kit 3.0 Standard
Ecommerce Corporation Online Store Kit 3.0 Lite
1 EDB exploit
6.8
CVSSv2
CVE-2003-1145
Cross-site scripting (XSS) vulnerability in friendmail.php in OpenAutoClassifieds 1.0 allows remote malicious users to inject arbitrary web script or HTML via the listing parameter.
1 EDB exploit
6.8
CVSSv2
CVE-2003-1182
Cross-site scripting (XSS) vulnerability in MPM Guestbook 1.2 allows remote malicious users to inject arbitrary web script or HTML via the lng parameter.
Mpm Mpm Guestbook 1.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started