Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gerendi sandor attila vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-1616
Cross-site scripting (XSS) vulnerability in docs/showdoc.php in Coppermine Photo Gallery (CPG) prior to 1.4.22 allows remote malicious users to inject arbitrary web script or HTML via the css parameter, a different vector than CVE-2008-0505.
Coppermine Coppermine Photo Gallery 1.4.22
1 EDB exploit
7.5
CVSSv2
CVE-2009-1842
SQL injection vulnerability in main/tracking/userLog.php in Francisco Burzi PHP-Nuke 8.0 allows remote malicious users to execute arbitrary SQL commands via the HTTP Referer header.
Phpnuke Php-nuke 8.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-1845
Cross-site scripting (XSS) vulnerability in ajax/updatecheck.php in Lussumo Vanilla 1.1.5 and 1.1.7 allows remote malicious users to inject arbitrary web script or HTML via the RequestName parameter.
Lussumo Vanilla 1.1.5
Lussumo Vanilla 1.1.7
1 EDB exploit
9.3
CVSSv2
CVE-2008-4769
Directory traversal vulnerability in the get_category_template function in wp-includes/theme.php in WordPress 2.3.3 and previous versions, and 2.5, allows remote malicious users to include and possibly execute arbitrary PHP files via the cat parameter in index.php. NOTE: some of ...
Wordpress Wordpress 1.2-delta
Wordpress Wordpress 2.1.3
Wordpress Wordpress 1.0.1-miles
Wordpress Wordpress 1.5-strayhorn
Wordpress Wordpress 1.5.1.2
Wordpress Wordpress 1.5.1.3
Wordpress Wordpress 2.0.2
Wordpress Wordpress 2.0.3
Wordpress Wordpress 2.0.4
Wordpress Wordpress 2.3
Wordpress Wordpress 1.2
Wordpress Wordpress 2.2 Revision5003
Wordpress Wordpress 2.2.2
Wordpress Wordpress 1.0
Wordpress Wordpress 1.0.1
Wordpress Wordpress 0.7
Wordpress Wordpress 0.72
Wordpress Wordpress 1.4
Wordpress Wordpress 1.2-mingus
Wordpress Wordpress 2.2 Revision5002
Wordpress Wordpress 1.0.2-blakey
Wordpress Wordpress 1.5.1.1
1 EDB exploit
4.3
CVSSv2
CVE-2009-1907
Cross-site scripting (XSS) vulnerability in claroline/linker/notfound.php in Claroline 1.8.11 allows remote malicious users to inject arbitrary web script or HTML via the Referer HTTP header.
Claroline Claroline 1.8.11
1 EDB exploit
4.3
CVSSv2
CVE-2008-1956
Cross-site scripting (XSS) vulnerability in index.php in Wikepage Opus 13 2007.2 allows remote malicious users to inject arbitrary web script or HTML via the wiki parameter.
Wikepage Opus 13 2007.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started