Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hxh vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2391
Cross-site scripting (XSS) vulnerability in text.php in Virtuenetz Virtue Online Test Generator allows remote malicious users to inject arbitrary web script or HTML via the tid parameter.
Virtuenetz Virtue Online Test Generator
1 EDB exploit
NA
CVE-2009-2392
SQL injection vulnerability in text.php in Virtuenetz Virtue Online Test Generator allows remote malicious users to execute arbitrary SQL commands via the tid parameter.
Virtuenetz Virtue Online Test Generator
1 EDB exploit
NA
CVE-2009-1854
Million Dollar Text Links 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the userid cookie to 1.
Cmsnx Million Dollar Text Links 1.0
1 EDB exploit
NA
CVE-2009-2231
MIDAS 1.43 allows remote malicious users to bypass authentication and obtain administrative access via an admin account record in a MIDAS cookie.
Mid.as Midas 1.43
1 EDB exploit
NA
CVE-2009-2393
admin/index.php in Virtuenetz Virtue Online Test Generator does not require administrative privileges, which allows remote authenticated users to have an unknown impact via unspecified vectors.
Virtuenetz Virtue Online Test Generator
1 EDB exploit
NA
CVE-2009-3331
Multiple PHP remote file inclusion vulnerabilities in DDL CMS 1.0 allow remote malicious users to execute arbitrary PHP code via a URL in the wwwRoot parameter to (1) header.php, (2) submit.php, (3) submitted.php, and (4) autosubmitter/index.php.
Ddlcms Ddl Cms 1.0
1 EDB exploit
NA
CVE-2009-3246
SQL injection vulnerability in spnews.php in MyBuxScript PTC-BUX allows remote malicious users to execute arbitrary SQL commands via the id parameter in an spnews action to the default URI. NOTE: some of these details are obtained from third party information.
Mybuxscript Pts-bux
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started