Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2008-2202
Multiple cross-site scripting (XSS) vulnerabilities in Maian Uploader 4.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) keywords parameter to upload/admin/index.php in a search action, the (2) msg_charset and (3) msg_header9 parameters to admin/i...
Maianscriptworld Maian Uploader 4.0
3 EDB exploits
655
VMScore
CVE-2014-3857
Multiple SQL injection vulnerabilities in Kerio Control Statistics in Kerio Control (formerly WinRoute Firewall) prior to 8.3.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) x_16 or (2) x_17 parameter to print.php.
Kerio Control 8.3.0
Kerio Control
1 EDB exploit
440
VMScore
CVE-2008-2082
Cross-site scripting (XSS) vulnerability in index.php in Siteman 2.0.x2 allows remote malicious users to inject arbitrary web script or HTML via the module parameter, which leaks the path in an error message.
Siteman Siteman 2.0
2 EDB exploits
440
VMScore
CVE-2008-2188
Multiple cross-site scripting (XSS) vulnerabilities in EJ3 BlackBook 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) bookCopyright and (2) ver parameters to (a) footer.php, and the (3) bookName, (4) bookMetaTags, and (5) estiloCSS parameters to...
Eejj33 Blackbook 1.0
2 EDB exploits
270
VMScore
CVE-2008-3712
Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and 4.6.5, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) query string to mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/co...
Mambo Mambo 4.6.2
Mambo Mambo 4.6.5
2 EDB exploits
440
VMScore
CVE-2008-3569
Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.6.7, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the text parameter to (1) iart.php and (2) ming.php.
Apache Friends Xampp 1.6.7
2 EDB exploits
755
VMScore
CVE-2008-0325
SQL injection vulnerability in show.php in FaScript FaPersian Petition allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Fascript Fapersian Petition
1 EDB exploit
755
VMScore
CVE-2007-5122
SQL injection vulnerability in store_info.php in SoftBiz Classifieds PLUS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Softbizscripts Classifieds Plus Script
1 EDB exploit
755
VMScore
CVE-2009-3541
PHP remote file inclusion vulnerability in CoupleDB.php in PHPGenealogy 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the DataDirectory parameter.
Phpgenealogy Phpgenealogy 2.0
1 EDB exploit
435
VMScore
CVE-2008-1649
Cross-site scripting (XSS) vulnerability in staticpages/easypublish/index.php in EasyNews 4.0 allows remote malicious users to inject arbitrary web script or HTML via the read parameter in an edp_pupublish action.
Myiosoft Easynews 4.0tr
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »