Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gulftech security vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2005-4891
Simple Machine Forum (SMF) versions 1.0.4 and previous versions have an SQL injection vulnerability that allows remote malicious users to inject arbitrary SQL statements.
Simplemachines Simple Machine Forum
1 EDB exploit
6.5
CVSSv3
CVE-2005-1674
Cross-Site Request Forgery (CSRF) vulnerability in Help Center Live allows remote malicious users to perform actions as the administrator via a link or IMG tag to view.php.
Helpcenterlive Help Center Live -
1 EDB exploit
NA
CVE-2008-7090
Multiple directory traversal vulnerabilities in Pligg 9.9 and previous versions allow remote malicious users to (1) determine the existence of arbitrary files via a .. (dot dot) in the $tb_url variable in trackback.php, or (2) include arbitrary files via a .. (dot dot) in the tem...
Pligg Pligg Cms 9.5
Pligg Pligg Cms
1 EDB exploit
NA
CVE-2008-7089
Cross-site scripting (XSS) vulnerability in Pligg 9.9 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the keyword parameter in a search action to user.php and other unspecified vectors.
Pligg Pligg Cms 9.9.0
Pligg Pligg Cms 9.5
Pligg Pligg Cms
1 EDB exploit
NA
CVE-2008-7091
Multiple SQL injection vulnerabilities in Pligg 9.9 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to vote.php, which is not properly handled in libs/link.php; (2) id parameter to trackback.php; (3) an unspecified par...
Pligg Pligg Cms 9.9.0
Pligg Pligg Cms
Pligg Pligg Cms 9.5
2 EDB exploits
NA
CVE-2008-6985
Multiple SQL injection vulnerabilities in includes/classes/shopping_cart.php in Zen Cart 1.2.0 up to and including 1.3.8a, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the id parameter when (1) adding or (2) updating the sh...
Zen-cart Zen Cart 1.2.4.1
Zen-cart Zen Cart 1.2.1d
Zen-cart Zen Cart 1.3
Zen-cart Zen Cart 1.2.1 Patch1
Zen-cart Zen Cart 1.2.4d
Zen-cart Zen Cart 1.2.3d
Zen-cart Zen Cart 1.3.5
Zen-cart Zen Cart 1.3.8a
Zen-cart Zen Cart 1.2.2d
Zen-cart Zen Cart 1.2.0d
Zen-cart Zen Cart 1.3.7
Zen-cart Zen Cart 1.3.6
Zen-cart Zen Cart 1.2.6d
Zen-cart Zen Cart 1.2.5d
Zen-cart Zen Cart 1.3.8
Zen-cart Zen Cart 1.3.2
1 EDB exploit
NA
CVE-2008-6968
Multiple SQL injection vulnerabilities in submit.php in Pligg CMS 9.9.5 allow remote malicious users to execute arbitrary SQL commands via the (1) category and (2) id parameters.
Pligg Pligg Cms 9.9.5
1 EDB exploit
NA
CVE-2008-6970
SQL injection vulnerability in dosearch.inc.php in UBB.threads 7.3.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the Forum[] array parameter.
Ubbcentral Ubb.threads 6.0.2
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.3.1
Ubbcentral Ubb.threads 6.3
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 7.2
Ubbcentral Ubb.threads
Ubbcentral Ubb.threads 5.0
Ubbcentral Ubb.threads 5.5.1
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.5.2 Beta2
Ubbcentral Ubb.threads 6.5.2
Ubbcentral Ubb.threads 6.0
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.2.3
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.4.4
1 EDB exploit
1 Github repository
NA
CVE-2008-6394
SQL injection vulnerability in core/user.php in CS-Cart 1.3.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cs_cookies[customer_user_id] cookie parameter.
Cs-cart Cs-cart 1.3.2
Cs-cart Cs-cart 1.3.3
Cs-cart Cs-cart 1.2
Cs-cart Cs-cart 1.1
Cs-cart Cs-cart 1.3.0
Cs-cart Cs-cart
1 EDB exploit
NA
CVE-2008-5920
The create_anchors function in utils.inc in WebSVN 1.x allows remote malicious users to execute arbitrary PHP code via a crafted username that is processed by the preg_replace function with the eval switch.
Tigris Websvn 1.37
Tigris Websvn 1.34
Tigris Websvn 1.03
Tigris Websvn 1.02
Tigris Websvn 1.60
Tigris Websvn 1.61
Tigris Websvn 1.33
Tigris Websvn 1.32
Tigris Websvn 1.01
Tigris Websvn 1.00
Tigris Websvn 1.62
Tigris Websvn 1.51
Tigris Websvn 1.31a
Tigris Websvn 1.20
Tigris Websvn 1.40
Tigris Websvn 1.39
Tigris Websvn 1.38
Tigris Websvn 1.10
Tigris Websvn 1.04
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »