Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-2202
Multiple cross-site scripting (XSS) vulnerabilities in Maian Uploader 4.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) keywords parameter to upload/admin/index.php in a search action, the (2) msg_charset and (3) msg_header9 parameters to admin/i...
Maianscriptworld Maian Uploader 4.0
3 EDB exploits
6.5
CVSSv2
CVE-2014-3857
Multiple SQL injection vulnerabilities in Kerio Control Statistics in Kerio Control (formerly WinRoute Firewall) prior to 8.3.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) x_16 or (2) x_17 parameter to print.php.
Kerio Control 8.3.0
Kerio Control
1 EDB exploit
4.3
CVSSv2
CVE-2008-3569
Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.6.7, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the text parameter to (1) iart.php and (2) ming.php.
Apache Friends Xampp 1.6.7
2 EDB exploits
2.6
CVSSv2
CVE-2008-3712
Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and 4.6.5, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) query string to mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/co...
Mambo Mambo 4.6.2
Mambo Mambo 4.6.5
2 EDB exploits
4.3
CVSSv2
CVE-2008-2188
Multiple cross-site scripting (XSS) vulnerabilities in EJ3 BlackBook 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) bookCopyright and (2) ver parameters to (a) footer.php, and the (3) bookName, (4) bookMetaTags, and (5) estiloCSS parameters to...
Eejj33 Blackbook 1.0
2 EDB exploits
4.3
CVSSv2
CVE-2008-2082
Cross-site scripting (XSS) vulnerability in index.php in Siteman 2.0.x2 allows remote malicious users to inject arbitrary web script or HTML via the module parameter, which leaks the path in an error message.
Siteman Siteman 2.0
2 EDB exploits
5
CVSSv2
CVE-2009-4961
Lanai Core 0.6 allows remote malicious users to obtain configuration information via a direct request to info.php, which calls the phpinfo function.
Lanai-core Lanai-core 0.6
1 EDB exploit
7.5
CVSSv2
CVE-2008-4702
Multiple directory traversal vulnerabilities in PhpWebGallery 1.3.4 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) user[language] and (2) user[template] parameters to (a) init.inc.php, and (b) the user[language] parameter t...
Phpwebgallery Phpwebgallery 1.3.4
1 EDB exploit
7.5
CVSSv2
CVE-2007-5996
SQL injection vulnerability in searchresult.php in Softbiz Link Directory Script allows remote malicious users to execute arbitrary SQL commands via the sbcat_id parameter, a related issue to CVE-2007-5449.
Softbizscripts Link Directory Script 1.0
1 EDB exploit
6.5
CVSSv2
CVE-2007-5998
SQL injection vulnerability in ads.php in Softbiz Ad Management plus Script 1 allows remote authenticated users to execute arbitrary SQL commands via the package parameter.
Softbizscripts Ad Management Plus Script 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »