Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ellipsis security vulnerabilities and exploits
(subscribe to this query)
775
VMScore
CVE-2006-3271
Multiple SQL injection vulnerabilities in Softbiz Dating 1.0 allow remote malicious users to execute SQL commands via the (1) country and (2) sort_by parameters in (a) search_results.php; (3) browse parameter in (b) featured_photos.php; (4) cid parameter in (c) products.php, (d) ...
Softbiz Dating Script 1.0
5 EDB exploits
760
VMScore
CVE-2006-3926
Multiple SQL injection vulnerabilities in PhpProBid 5.24 allow remote malicious users to execute arbitrary SQL commands via the (1) view or (2) start parameters to (a) viewfeedback.php or the (3) orderType parameter to (b) categories.php.
Php Pro Bid Php Pro Bid 5.24
2 EDB exploits
755
VMScore
CVE-2006-3886
SQL injection vulnerability in Shalwan MusicBox 2.3.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the page parameter in a viewgallery action in a request for the top-level URI. NOTE: the start parameter/search action is already covere...
Musicbox Musicbox 2.3
Musicbox Musicbox 2.3.4
Musicbox Musicbox 2.3 Beta 2
Musicbox Musicbox 2.3.3
1 EDB exploit
585
VMScore
CVE-2006-3405
Cross-site scripting (XSS) vulnerability in qtofm.php in QTOFileManager 1.0 allows remote malicious users to inject arbitrary web script or HTML via the (1) delete, (2) pathext, and (3) edit parameters.
Qto Qtofilemanager 1.0
1 EDB exploit
445
VMScore
CVE-2022-29536
In GNOME Epiphany prior to 41.4 and 42.x prior to 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten in the UI process) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly considered.
Gnome Epiphany
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Debian Debian Linux 10.0
Debian Debian Linux 11.0
440
VMScore
CVE-2006-3259
Multiple cross-site scripting (XSS) vulnerabilities in e107 0.7.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) ep parameter to search.php and the (2) subject parameter in comment.php (aka the Subject field when posting a comment).
E107 E107 0.551 Beta
E107 E107 0.6175
E107 E107 0.616
E107 E107 0.6174
E107 E107 0.549 Beta
E107 E107 0.615a
E107 E107 0.6 15
E107 E107 0.7.4
E107 E107 0.555 Beta
E107 E107 0.6173
E107 E107 0.610
E107 E107 0.607
E107 E107 0.7.2
E107 E107 0.609
E107 E107 0.554
E107 E107 0.6 10
E107 E107 0.545
E107 E107 0.606
E107 E107 0.602
E107 E107 0.7
E107 E107 0.554 Beta
E107 E107 0.6 12
2 EDB exploits
435
VMScore
CVE-2006-7072
Cross-site scripting (XSS) vulnerability in GeoClassifieds Enterprise 2.0.5.2 and previous versions allows remote malicious users to inject arbitrary web script and HTML via the (1) b[username] and (2) c parameters to (a) index.php, the b[username] parameter to (b) admin/index.ph...
Geodesicsolutions Geoclassifieds Enterprise 2.0.5.0
Geodesicsolutions Geoclassifieds Enterprise 2.0.5.1
Geodesicsolutions Geoclassifieds Enterprise 2.0.5.2
1 EDB exploit
435
VMScore
CVE-2006-3927
Cross-site scripting (XSS) vulnerability in auctionsearch.php in PhpProBid 5.24 allows remote malicious users to inject arbitrary web script or HTML via the advsrc parameter.
Php Pro Bid Php Pro Bid 5.24
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started