Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ghost hacker vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-3401
PHP remote file inclusion vulnerability in hioxRandomAd.php in HIOX Random Ad (HRA) 1.3 allows remote malicious users to execute arbitrary PHP code via a URL in the hm parameter.
Hscripts Hiox Random Ad 1.3
1 EDB exploit
7.5
CVSSv2
CVE-2008-3402
Multiple PHP remote file inclusion vulnerabilities in HIOX Browser Statistics (HBS) 2.0 allow remote malicious users to execute arbitrary PHP code via a URL in the hm parameter to (1) hioxupdate.php and (2) hioxstats.php.
Hscripts Hiox Random Ad 2.0
1 EDB exploit
4.3
CVSSv2
CVE-2008-3448
Cross-site scripting (XSS) vulnerability in index.php in common solutions csphonebook 1.02 allows remote malicious users to inject arbitrary web script or HTML via the letter parameter.
Common-solutions Csphonebook 1.02
1 EDB exploit
9.3
CVSSv2
CVE-2008-2884
PHP remote file inclusion vulnerability in display.php in RSS-aggregator allows remote malicious users to execute arbitrary PHP code via a URL in the path parameter. NOTE: some of these details are obtained from third party information.
Rss Aggregator Rss Aggregator
1 EDB exploit
7.5
CVSSv2
CVE-2008-5901
iyzi Forum 1.0 beta 3 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file containing a password via a direct request for db/iyziforum.mdb. NOTE: some of these details are obtained from...
Iyziforum Iyzi Forum 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2008-3587
Cross-site scripting (XSS) vulnerability in result.php in Chris Bunting Homes 4 Sale allows remote malicious users to inject arbitrary web script or HTML via the r parameter.
Needscripts Homes 4 Sale
1 EDB exploit
4.3
CVSSv2
CVE-2008-4532
Cross-site scripting (XSS) vulnerability in index.php in MaxiScript Website Directory allows remote malicious users to inject arbitrary web script or HTML via the keyword parameter in a search action.
Maxiscript Website Directory
1 EDB exploit
4.3
CVSSv2
CVE-2008-4669
Cross-site scripting (XSS) vulnerability in search.php in Dan Fletcher Recipe Script allows remote malicious users to inject arbitrary web script or HTML via the keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...
Dan Fletcher Recipe Script
1 EDB exploit
4.3
CVSSv2
CVE-2008-4670
Cross-site scripting (XSS) vulnerability in search.php in Ed Pudol Clickbank Portal allows remote malicious users to inject arbitrary web script or HTML via the search box. NOTE: the provenance of this information is unknown; the details are obtained solely from third party infor...
Ed Putal Clickbank Portal
1 EDB exploit
4.3
CVSSv2
CVE-2008-4672
Cross-site scripting (XSS) vulnerability in search_results.php in buymyscripts Lyrics Script allows remote malicious users to inject arbitrary web script or HTML via the k parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third p...
Goodlyrics Lyrics Script
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »