Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
irvian vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2007-2087
Multiple PHP remote file inclusion vulnerabilities in CNStats 2.12, when register_globals is enabled and .htaccess is not recognized, allow remote malicious users to execute arbitrary PHP code via a URL in the bn parameter to (1) who_r.php or (2) who_s.php in reports/. NOTE: the ...
Cnstats Cnstats 2.12
1 EDB exploit
685
VMScore
CVE-2007-2086
Multiple PHP remote file inclusion vulnerabilities in CNStats 2.9 allow remote malicious users to execute arbitrary PHP code via a URL in the bj parameter to (1) who_r.php or (2) who_s.php in reports/.
Cnstats Cnstats 2.9
1 EDB exploit
755
VMScore
CVE-2008-1750
SQL injection vulnerability in Integry Systems LiveCart 1.1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter to the /category URI.
Livecart Livecart 1.0.1
Livecart Livecart 1.1.0
Livecart Livecart 1.1.1
1 EDB exploit
755
VMScore
CVE-2007-2070
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart prior to 3.5.1 allow remote malicious users to execute arbitrary PHP code via a URL in the abs_path parameter to (1) index.php or (2) checkout.php.
Turnkey Web Tools Sunshop Shopping Cart 3.5
Turnkey Web Tools Sunshop Shopping Cart
1 EDB exploit
755
VMScore
CVE-2006-6093
Multiple PHP remote file inclusion vulnerabilities in adminprint.php in PicturesPro Photo Cart 3.9 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) admin_folder and (2) path parameters.
Picturespro Picturespro Photo Cart 3.9
1 EDB exploit
755
VMScore
CVE-2007-4604
SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote malicious users to execute arbitrary SQL commands via the ItemID parameter.
Dinkumsoft.com Dl Paycart 1.01
1 EDB exploit
755
VMScore
CVE-2007-2458
Multiple PHP remote file inclusion vulnerabilities in Pixaria Gallery prior to 1.4.3 allow remote malicious users to execute arbitrary PHP code via a URL in the cfg[sys][base_path] parameter to psg.smarty.lib.php and certain include and library scripts, a different vector than CV...
Pixaria Pixaria Gallery 1.2.1
Pixaria Pixaria Gallery 1.0.5
Pixaria Pixaria Gallery 1.1.1
Pixaria Pixaria Gallery 1.4
Pixaria Pixaria Gallery 1.1.5
Pixaria Pixaria Gallery 1.1.6
Pixaria Pixaria Gallery 1.3.3
Pixaria Pixaria Gallery 1.2
Pixaria Pixaria Gallery 1.0.3
Pixaria Pixaria Gallery 1.3
Pixaria Pixaria Gallery 1.1.3
Pixaria Pixaria Gallery 1.4.1
Pixaria Pixaria Gallery 1.4.2
Pixaria Pixaria Gallery 1.1.4
Pixaria Pixaria Gallery 1.0.2
Pixaria Pixaria Gallery 1.0.4
Pixaria Pixaria Gallery 1.3.1
Pixaria Pixaria Gallery 1.1
Pixaria Pixaria Gallery 1.1.2
Pixaria Pixaria Gallery 1.3.2
Pixaria Pixaria Gallery 1.0.1
1 EDB exploit
755
VMScore
CVE-2007-2457
PHP remote file inclusion vulnerability in resources/includes/class.Smarty.php in Pixaria Gallery prior to 1.4.3 allows remote malicious users to execute arbitrary PHP code via a URL in the cfg[sys][base_path] parameter.
Pixaria Pixaria Gallery 1.2.1
Pixaria Pixaria Gallery 1.0.5
Pixaria Pixaria Gallery 1.1.1
Pixaria Pixaria Gallery 1.4
Pixaria Pixaria Gallery 1.1.5
Pixaria Pixaria Gallery 1.1.6
Pixaria Pixaria Gallery 1.3.3
Pixaria Pixaria Gallery 1.2
Pixaria Pixaria Gallery 1.0.3
Pixaria Pixaria Gallery 1.3
Pixaria Pixaria Gallery 1.1.3
Pixaria Pixaria Gallery 1.4.1
Pixaria Pixaria Gallery 1.4.2
Pixaria Pixaria Gallery 1.1.4
Pixaria Pixaria Gallery 1.0.2
Pixaria Pixaria Gallery 1.0.4
Pixaria Pixaria Gallery 1.3.1
Pixaria Pixaria Gallery 1.1
Pixaria Pixaria Gallery 1.1.2
Pixaria Pixaria Gallery 1.3.2
Pixaria Pixaria Gallery 1.0.1
1 EDB exploit
755
VMScore
CVE-2008-2339
SQL injection vulnerability in index.php in Turnkey Web Tools SunShop Shopping Cart 3.5.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter in an item action, a different vector than CVE-2008-2038, CVE-2007-4597, and CVE-2007-2549.
Turnkeywebtools Sunshop Shopping Cart 3.5.1
1 EDB exploit
755
VMScore
CVE-2007-0232
PHP remote file inclusion vulnerability in routines/fieldValidation.php in Jshop Server 1.3 allows remote malicious users to execute arbitrary PHP code via a URL in the jssShopFileSystem parameter.
Jshop E-commerce Jshop Server 1.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started