Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
indoushka vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2010-1065
Lebisoft Ziyaretci Defteri 7.4 and 7.5 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for db/lebisoft.mdb.
Lebisoft Ziyaretci Defteri 7.4
Lebisoft Ziyaretci Defteri 7.5
1 EDB exploit
755
VMScore
CVE-2012-1210
SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Powie Pfile 1.02
1 EDB exploit
755
VMScore
CVE-2010-0724
SQL injection vulnerability in showimg.php in Arab Cart 1.0.2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mhd Zaher Ghaibeh Arab Cart 1.0.2.0
1 EDB exploit
435
VMScore
CVE-2010-0754
Cross-site scripting (XSS) vulnerability in index.php/Special/Main/Templates in WikyBlog 1.7.2 and 1.7.3 rc2 allows remote malicious users to inject arbitrary web script or HTML via the which parameter in a copy action.
Wikyblog Wikyblog 1.7.2
Wikyblog Wikyblog 1.7.3
1 EDB exploit
435
VMScore
CVE-2004-1551
Cross-site scripting (XSS) vulnerability in the (1) email or (2) file modules in paFileDB 3.1 Final allows remote malicious users to execute arbitrary web script or HTML via the id parameter.
Php Arena Pafiledb 3.1
1 EDB exploit
435
VMScore
CVE-2009-4446
Cross-site scripting (XSS) vulnerability in admin.php in phpInstantGallery 1.1 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Ikemcg Phpinstantgallery 1.1
1 EDB exploit
685
VMScore
CVE-2009-4451
Unrestricted file upload vulnerability in upper.php in kandalf upper 0.1 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in fileup/.
Php.html Kandalf Upper 0.1
1 EDB exploit
435
VMScore
CVE-2009-4461
Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.909 allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) contact.php, (2) login.php, and (3) search.php.
Flatpress Flatpress 0.909
1 EDB exploit
435
VMScore
CVE-2009-4469
Multiple cross-site scripting (XSS) vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) PATH_INFO, the (2) archiv parameter, and the (3) subcat parameter.
Giombetti Phppowercards 2.0
1 EDB exploit
435
VMScore
CVE-2009-4678
Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Winn Winn Guestbook 2.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »