Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
indoushka vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2010-0371
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Hitmaaan Gallery 1.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) gall and (2) levela parameters.
Hitmaaan Hitmaaan Gallery 1.3
1 EDB exploit
755
VMScore
CVE-2012-1198
base_ag_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allows remote malicious users to execute arbitrary code by uploading contents of the file with an executable extension via a create action, then accessing it via a view action.
Secureideas Basic Analysis And Security Engine 1.4.5
1 EDB exploit
435
VMScore
CVE-2010-1113
Cross-site scripting (XSS) vulnerability in the forum page in Web Server Creator - Web Portal 0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors to index.php.
Comscripts Web Server Creator Web Portal 0.1
1 EDB exploit
505
VMScore
CVE-2005-0952
Cross-site scripting vulnerability in pafiledb.php in PaFileDB 3.1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Php Arena Pafiledb 3.1
1 EDB exploit
755
VMScore
CVE-2010-1106
PHP remote file inclusion vulnerability in cgi/index.php in AdvertisementManager 3.1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the req parameter. NOTE: this can also be leveraged to include and execute arbitrary local files via .. (dot dot) sequen...
Advertisementmanager Advertisementmanager 3.1.0
1 EDB exploit
755
VMScore
CVE-2010-1114
Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal 0.1 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) pg parameter to index.php and the (2) path parameter to news/form.php.
Comscripts Web Server Creator Web Portal 0.1
1 EDB exploit
435
VMScore
CVE-2012-1211
Cross-site scripting (XSS) vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote malicious users to inject arbitrary web script or HTML via the filecat parameter.
Powie Pfile 1.02
1 EDB exploit
685
VMScore
CVE-2010-0390
Unrestricted file upload vulnerability in maxImageUpload/index.php in PHP F1 Max's Image Uploader 1.0, when Apache is not configured to handle the mime-type for files with pjpeg or jpeg extensions, allows remote malicious users to execute arbitrary code by uploading a file w...
Phpf1 Max\\'s Image Uploader 1.0
1 EDB exploit
755
VMScore
CVE-2010-0755
PHP remote file inclusion vulnerability in include/WBmap.php in WikyBlog 1.7.3 rc2 allows remote malicious users to execute arbitrary PHP code via a URL in the langFile parameter.
Wikyblog Wikyblog 1.7.3
1 EDB exploit
585
VMScore
CVE-2010-0756
Session fixation vulnerability in WikyBlog 1.7.3 rc2 allows remote malicious users to hijack web sessions by setting the jsessionid parameter to (1) index.php/Comment/Main, (2) index.php/Comment/Main/Home_Wiky, or (3) index.php/Edit/Main.
Wikyblog Wikyblog 1.7.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »