Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
girex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1947
SQL injection vulnerability in the UnbDbEncode function in unb_lib/database.lib.php in Unclassified NewsBoard (UNB) 1.6.4 allows remote malicious users to execute arbitrary SQL commands via the Query parameter in a search action to forum.php, a different vector than CVE-2005-3686...
Newsboard Unclassified Newsboard 1.6.4
1 EDB exploit
NA
CVE-2009-1949
import_wbb1.php in Unclassified NewsBoard (UNB) 1.6.4 allows remote malicious users to obtain sensitive information via a direct request, which reveals the installation path in an error message.
Unclassified Newsboard 1.6.4
1 EDB exploit
NA
CVE-2010-4151
SQL injection vulnerability in misc.php in DeluxeBB 1.3, and possibly earlier, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the xthedateformat parameter in a register action, a different vector than CVE-2005-2989, CVE-2006...
Deluxebb Deluxebb 1.05
Deluxebb Deluxebb 1.08
Deluxebb Deluxebb 1.2
Deluxebb Deluxebb 1.0
Deluxebb Deluxebb 1.07
Deluxebb Deluxebb
Deluxebb Deluxebb 1.09
Deluxebb Deluxebb 1.06
Deluxebb Deluxebb 1.1
1 EDB exploit
NA
CVE-2008-1554
SQL injection vulnerability in account/index.php in TopperMod 2.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via a non-alphanumeric first character the localita parameter, which bypasses a protection mechanism.
Topper Toppermod 2.0
1 EDB exploit
NA
CVE-2009-1033
SQL injection vulnerability in misc.php in DeluxeBB 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the qorder parameter, a different vector than CVE-2005-2989 and CVE-2006-2503.
Deluxebb Deluxebb 1.07
Deluxebb Deluxebb 1.1
Deluxebb Deluxebb 1.09
Deluxebb Deluxebb 1.2
Deluxebb Deluxebb 1.0
Deluxebb Deluxebb
Deluxebb Deluxebb 1.05
Deluxebb Deluxebb 1.06
Deluxebb Deluxebb 1.08
1 EDB exploit
NA
CVE-2008-5320
SQL injection vulnerability in usersettings.php in e107 0.7.13 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the ue[] parameter.
E107 E107
E107 E107 0.7.11
E107 E107 0.7.4
E107 E107 0.7.3
E107 E107 0.6171
E107 E107 0.617
E107 E107 0.611
E107 E107 0.610
E107 E107 0.603
E107 E107 0.602
E107 E107 0.549 Beta
E107 E107 0.548 Beta
E107 E107 5.3 Beta2
E107 E107 5.3 Beta
E107 E107 0.7.8
E107 E107 0.7.7
E107 E107 0.7
E107 E107 0.6175
E107 E107 0.6174
E107 E107 0.615
E107 E107 0.614
E107 E107 0.607
1 EDB exploit
NA
CVE-2008-2028
miniBB 2.2, and possibly earlier, when register_globals is enabled, allows remote malicious users to obtain the full path via a direct request to the glang parameter in a registernew action to index.php, which leaks the path in an error message.
Minibb Minibb
1 EDB exploit
NA
CVE-2008-3153
SQL injection vulnerability in Triton CMS Pro allows remote malicious users to execute arbitrary SQL commands via the X-Forwarded-For HTTP header.
Tritoncms Triton Cms Pro
1 EDB exploit
NA
CVE-2008-6592
thumbsup.php in Thumbs-Up 1.12, as used in LightNEasy "no database" (aka flat) and SQLite 1.2.2 and previous versions, allows remote malicious users to copy, rename, and read arbitrary files via directory traversal sequences in the image parameter with a modified cache_...
Sqlite Sqlite 1.2.2
Lightneasy Lightneasy 1.2.2
1 EDB exploit
NA
CVE-2008-1860
Static code injection vulnerability in admin.php in LokiCMS 0.3.3 and previous versions allows remote malicious users to inject arbitrary PHP code into includes/Config.php via the default parameter.
Lokicms Lokicms 0.3.1b1
Lokicms Lokicms 0.3.1b2
Lokicms Lokicms 0.3.2b1
Lokicms Lokicms
Lokicms Lokicms 0.2.0
Lokicms Lokicms 0.3.0
Lokicms Lokicms 0.1.0
Lokicms Lokicms 0.1.0rc1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »