Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knockout vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2017-6968
GMV Checker ATM Security before 5.0.18 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka PT-2017-03.
Gmv Checker Atm Security -
1 Article
7.5
CVSSv2
CVE-2019-8121
An insecure component vulnerability exists in Magento 2.1 before 2.1.19, Magento 2.2 before 2.2.10, Magento 2.3 before 2.3.3. Magento 2 codebase leveraged outdated versions of JS libraries (Bootstrap, jquery, Knockout) with known security vulnerabilities.
Magento Magento
7.5
CVSSv2
CVE-2010-4912
SQL injection vulnerability in shop.php in UCenter Home 2.0 allows remote malicious users to execute arbitrary SQL commands via the shopid parameter in a view action.
Discuz Ucenter Home 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-4855
SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote malicious users to execute arbitrary SQL commands via the makale_id parameter.
Aspindir Xweblog 2.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-4793
SQL injection vulnerability in detail.asp in Site2Nite Auto e-Manager allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Site2nite Auto E-manager
1 EDB exploit
7.5
CVSSv2
CVE-2010-4797
Multiple SQL injection vulnerabilities in the log-in form in Truworth Flex Timesheet allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) Password fields.
Truworthit Flex Timesheet
1 EDB exploit
7.5
CVSSv2
CVE-2010-4503
SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows remote malicious users to execute arbitrary SQL commands via the ID parameter in an export action.
Aigaion Aigaion 1.3.4
1 EDB exploit
7.5
CVSSv2
CVE-2010-3608
Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote malicious users to execute arbitrary SQL commands via the (1) id and (2) password (pw) parameters to (a) admin.php or (b) user.php.
Wire Plastic Design Wpquiz 2.7
1 EDB exploit
7.5
CVSSv2
CVE-2009-2117
uye_paneli.php in phPortal 1.0 allows remote malicious users to bypass authentication and obtain administrative access by setting the kulladi cookie to a valid username.
Phportal Phportal 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6802
Multiple SQL injection vulnerabilities in index.php in phPhotoGallery 0.92 allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) Password fields. NOTE: the provenance of this information is unknown; the details are obtained solely from third ...
Phpexplorer Phphotogallery 0.92
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »