Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hxh vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-2391
Cross-site scripting (XSS) vulnerability in text.php in Virtuenetz Virtue Online Test Generator allows remote malicious users to inject arbitrary web script or HTML via the tid parameter.
Virtuenetz Virtue Online Test Generator
1 EDB exploit
6.5
CVSSv2
CVE-2009-2393
admin/index.php in Virtuenetz Virtue Online Test Generator does not require administrative privileges, which allows remote authenticated users to have an unknown impact via unspecified vectors.
Virtuenetz Virtue Online Test Generator
1 EDB exploit
7.5
CVSSv2
CVE-2009-1854
Million Dollar Text Links 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the userid cookie to 1.
Cmsnx Million Dollar Text Links 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3246
SQL injection vulnerability in spnews.php in MyBuxScript PTC-BUX allows remote malicious users to execute arbitrary SQL commands via the id parameter in an spnews action to the default URI. NOTE: some of these details are obtained from third party information.
Mybuxscript Pts-bux
1 EDB exploit
7.5
CVSSv2
CVE-2009-2231
MIDAS 1.43 allows remote malicious users to bypass authentication and obtain administrative access via an admin account record in a MIDAS cookie.
Mid.as Midas 1.43
1 EDB exploit
7.5
CVSSv2
CVE-2009-2392
SQL injection vulnerability in text.php in Virtuenetz Virtue Online Test Generator allows remote malicious users to execute arbitrary SQL commands via the tid parameter.
Virtuenetz Virtue Online Test Generator
1 EDB exploit
7.5
CVSSv2
CVE-2009-3331
Multiple PHP remote file inclusion vulnerabilities in DDL CMS 1.0 allow remote malicious users to execute arbitrary PHP code via a URL in the wwwRoot parameter to (1) header.php, (2) submit.php, (3) submitted.php, and (4) autosubmitter/index.php.
Ddlcms Ddl Cms 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started