Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
houssamix vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2008-1849
Directory traversal vulnerability in index.php in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla! component 1.6.2 and previous versions allows remote malicious users to list arbitrary directories via a .. (dot dot) in the dir parameter in a show_error action.
Joomlacode Joomlaexplorer
1 EDB exploit
655
VMScore
CVE-2007-4922
SQL injection vulnerability in play.php in the jeuxflash 1.0 module for KwsPHP allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a play ac action to index.php. NOTE: some details are obtained from third party information.
Kwsphp Kwsphp
Jeuxflash Jeuxflash Module 1.0
1 EDB exploit
685
VMScore
CVE-2009-0301
Multiple insecure method vulnerabilities in the FlexCell.Grid ActiveX control (FlexCell.ocx) in FlexCell Grid Control 5.6.9 allow remote malicious users to create and overwrite arbitrary files via the (1) SaveFile and (2) ExportToXML methods.
Grid2000 Flexcell Grid Control 5.6.9
1 EDB exploit
935
VMScore
CVE-2009-0134
Insecure method vulnerability in the EasyGrid.SGCtrl.32 ActiveX control in EasyGrid.ocx 1.0.0.1 in AAA EasyGrid ActiveX 3.51 allows remote malicious users to create and overwrite arbitrary files via the (1) DoSaveFile or (2) DoSaveHtmlFile method. NOTE: vector 1 could be leverage...
Share2 Easy Grid Control 3.51
1 EDB exploit
935
VMScore
CVE-2009-0175
Heap-based buffer overflow in Heathco Software MP3 TrackMaker 1.5 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in an invalid .mp3 file.
Heathcosoft Mp3 Trackmaker 1.5
1 EDB exploit
935
VMScore
CVE-2009-0298
Heap-based buffer overflow in MW6 Technologies Barcode ActiveX control (Barcode.MW6Barcode.1, Barcode.dll) 3.0.0.1 allows remote malicious users to execute arbitrary code via a long Supplement property.
Mw6 Technologies Barcode Activex 3.0.0.1
1 EDB exploit
685
VMScore
CVE-2008-2217
Directory traversal vulnerability in cm/graphie.php in Content Management System 0.6.1 for Phprojekt allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the cm_imgpath parameter.
Mario Valdez Content Management System 0.6.1
1 EDB exploit
755
VMScore
CVE-2008-5226
SQL injection vulnerability in the MambAds (com_mambads) component 1.0 RC1 Beta and 1.0 RC1 for Mambo allows remote malicious users to execute arbitrary SQL commands via the ma_cat parameter in a view action to index.php, a different vector than CVE-2007-5177.
Mambads Mambads 1.0
Mambo Mambo
1 EDB exploit
755
VMScore
CVE-2008-2454
SQL injection vulnerability in the xsstream-dm (com_xsstream-dm) component 0.01 Beta for Joomla! allows remote malicious users to execute arbitrary SQL commands via the movie parameter to index.php.
Joomla Com Xsstream-dm 0.01 Beta
1 EDB exploit
755
VMScore
CVE-2008-0468
SQL injection vulnerability in category.php in Flinx 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Flinx Flinx
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »