Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
durito vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-5430
Multiple SQL injection vulnerabilities in Stride 1.0 allow remote malicious users to execute arbitrary SQL commands via (1) the p parameter to main.php in the Content Management System, (2) the id parameter in a sto cmd action to shop.php in the Merchant subsystem, or the (3) cou...
Scottmanktelow Stride Cms 1.0
3 EDB exploits
7.5
CVSSv2
CVE-2005-1413
Multiple SQL injection vulnerabilities in enVivo!CMS allow remote malicious users to execute arbitrary SQL commands and gain privileges via the (1) username or (2) password parameters to admin_login.asp, or the (3) searchstring and possibly (4) ID parameters to default.asp.
Envivosoft Envivo Cms 3.54
1 EDB exploit
4.3
CVSSv2
CVE-2007-5426
Multiple cross-site scripting (XSS) vulnerabilities in ActiveKB NX 2.5.4 allow remote malicious users to inject arbitrary web script or HTML via the page parameter to the default URI for some directories, as demonstrated by (1) ActiveKB/ and (2) default/categories/ActiveKB/.
Interspire Activekb Nx 2.5.4
1 EDB exploit
5
CVSSv2
CVE-2007-3556
Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download an include file containing account credentials via a direct request for config.inc.
Doubleflex Liesbeth Base Cms
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started