Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-2015
Multiple SQL injection vulnerabilities in LiSK CMS 4.4 allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter in a view_inbox action to cp/cp_messages.php or (2) the id parameter to cp/edit_email.php.
Createch-group Lisk Cms 4.4
1 EDB exploit
4.3
CVSSv2
CVE-2010-4749
Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1.e, and possibly earlier, allow remote malicious users to inject arbitrary web script or HTML via the (1) body parameter to action.php and the (2) amount and (3) action parameters to admin/index.php.
Blogcms Blog\\ Cms
1 EDB exploit
4.3
CVSSv2
CVE-2010-4882
Cross-site scripting (XSS) vulnerability in autocms.php in Auto CMS 1.6 allows remote malicious users to inject arbitrary web script or HTML via the sitetitle parameter.
Ventics Auto Cms 1.6
1 EDB exploit
4.3
CVSSv2
CVE-2011-5073
Multiple cross-site scripting (XSS) vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to inject arbitrary web script or HTML via the (1) mode parameter to contact_support.php; (2) contractid parameter to contract_add_service.php; (3...
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.40
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.21
1 EDB exploit
6.8
CVSSv2
CVE-2011-5074
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to hijack the authentication of administrators for requests that change administrator email, add a new administrator, or insert arbitrary s...
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.40
1 EDB exploit
5
CVSSv2
CVE-2010-4608
Habari 0.6.5 allows remote malicious users to obtain sensitive information via a direct request to (1) header.php and (2) comments_items.php in system/admin/, which reveals the installation path in an error message.
Habariproject Habari 0.6.5
1 EDB exploit
7.5
CVSSv2
CVE-2010-4609
SQL injection vulnerability in index.php in Html-edit CMS 3.1.8 allows remote malicious users to execute arbitrary SQL commands via the nuser parameter in a registrate action.
Html-edit Html-edit Cms 3.1.8
1 EDB exploit
7.5
CVSSv2
CVE-2010-4613
Multiple directory traversal vulnerabilities in Hycus CMS 1.0.3 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the site parameter to (1) index.php and (2) admin.php.
Hycus Hycus Cms 1.0.3
1 EDB exploit
7.5
CVSSv2
CVE-2010-4780
SQL injection vulnerability in the check_banlist function in includes/sessions.php in Enano CMS 1.1.7pl1; 1.0.6pl2; and possibly other versions prior to 1.1.8, 1.0.6pl3, and 1.1.7pl2 allows remote malicious users to execute arbitrary SQL commands via the email parameter to index....
Enanocms Enano Cms 1.1.4
Enanocms Enano Cms 1.1.3
Enanocms Enano Cms 0.8.2
Enanocms Enano Cms 0.8.3
Enanocms Enano Cms 1.0.2b1
Enanocms Enano Cms 1.0.3
Enanocms Enano Cms
Enanocms Enano Cms 1.1.6
Enanocms Enano Cms 1.1.5
Enanocms Enano Cms 1.0.6
Enanocms Enano Cms 0.8.1
Enanocms Enano Cms 1.0
Enanocms Enano Cms 1.0.1
Enanocms Enano Cms 1.0.2
Enanocms Enano Cms 1.1.2
Enanocms Enano Cms 1.1.1
Enanocms Enano Cms 0.8.4
Enanocms Enano Cms 0.9.1
Enanocms Enano Cms 1.0.4
Enanocms Enano Cms 1.0.5
Enanocms Enano Cms 1.1.7
Enanocms Enano Cms 0.9.2
1 EDB exploit
5
CVSSv2
CVE-2010-4781
index.php in Enano CMS 1.1.7pl1, and possibly other versions prior to 1.1.8, 1.0.6pl3, and 1.1.7pl2, allows remote malicious users to obtain sensitive information via a crafted title parameter, which reveals the installation path in an error message.
Enanocms Enano Cms 1.1.4
Enanocms Enano Cms 1.1.3
Enanocms Enano Cms 0.8.2
Enanocms Enano Cms 0.8.3
Enanocms Enano Cms 1.0.2
Enanocms Enano Cms 1.0.2b1
Enanocms Enano Cms
Enanocms Enano Cms 1.1.7
Enanocms Enano Cms 1.0.6
Enanocms Enano Cms 0.9.2
Enanocms Enano Cms 0.9.3
Enanocms Enano Cms 1.0.5
Enanocms Enano Cms 1.1.6
Enanocms Enano Cms 1.1.5
Enanocms Enano Cms 0.8.1
Enanocms Enano Cms 1.0
Enanocms Enano Cms 1.0.1
Enanocms Enano Cms 1.1.2
Enanocms Enano Cms 1.1.1
Enanocms Enano Cms 0.8.4
Enanocms Enano Cms 0.9.1
Enanocms Enano Cms 1.0.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »