Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mark stanislav vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-1669
Directory traversal vulnerability in index.php in phpMoneyBooks prior to 1.0.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
Phpmoneybooks Phpmoneybooks
1 EDB exploit
5
CVSSv2
CVE-2012-1670
admin/index.php in PHP Grade Book prior to 1.9.5 BETA allows remote malicious users to read the database via a SaveSQL action.
Phpgradebook Php Grade Book
Phpgradebook Php Grade Book 1.9.3
1 EDB exploit
7.5
CVSSv2
CVE-2012-1672
SQL injection vulnerability in getcity.php in Hotel Booking Portal 0.1 allows remote malicious users to execute arbitrary SQL commands via the country parameter.
Useasdf 4444 Hotel Booking Portal 0.1
1 EDB exploit
7.5
CVSSv2
CVE-2012-1673
SQL injection vulnerability in loginscript.php in e-ticketing allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Ola Lasisi E-ticketing -
1 EDB exploit
6
CVSSv2
CVE-2010-4313
Unrestricted file upload vulnerability in fileman_file_upload.php in Orbis CMS 1.0.2 allows remote authenticated users to execute arbitrary code by uploading a .php file, and then accessing it via a direct request to the file in uploads/.
Novo-ws Orbis Cms 1.0.2
1 EDB exploit
6.8
CVSSv2
CVE-2010-4330
Directory traversal vulnerability in includes/controller.php in Pulse CMS Basic prior to 1.2.9 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the p parameter to index.php.
Pulsecms Pulse Cms
Pulsecms Pulse Cms 1.2.7
Pulsecms Pulse Cms 1.2
Pulsecms Pulse Cms 1.18
Pulsecms Pulse Cms 1.17
Pulsecms Pulse Cms 1.2.4
Pulsecms Pulse Cms 1.2.3
Pulsecms Pulse Cms 1.1
Pulsecms Pulse Cms 1.01
Pulsecms Pulse Cms 1.2.2
Pulsecms Pulse Cms 1.2.1
Pulsecms Pulse Cms 1.0
Pulsecms Pulse Cms 1.2.6
Pulsecms Pulse Cms 1.2.5
Pulsecms Pulse Cms 1.16
Pulsecms Pulse Cms 1.15
1 EDB exploit
4.3
CVSSv2
CVE-2010-4331
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) default_news or (2) sponsors cookies, which are not properly handled by (a) controllers/index.ctrl.php or (b) controllers/setting...
Seopanel Seopanel 2.2.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-4332
Pointter PHP Content Management System 1.0 allows remote malicious users to bypass authentication and obtain administrative privileges via arbitrary values of the auser and apass cookies.
Pangramsoft Pointter Php Content Management System 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-4333
Pointter PHP Micro-Blogging Social Network 1.8 allows remote malicious users to bypass authentication and obtain administrative privileges via arbitrary values of the auser and apass cookies.
Pangramsoft Pointter Php Micro-blogging Social Network 1.8
1 EDB exploit
7.5
CVSSv2
CVE-2011-1546
Multiple SQL injection vulnerabilities in Andy's PHP Knowledgebase (Aphpkb) prior to 0.95.3 allow remote malicious users to execute arbitrary SQL commands via the s parameter to (1) a_viewusers.php or (2) keysearch.php; and allow remote authenticated administrators to execut...
Aphpkb Aphpkb 0.94.8
Aphpkb Aphpkb 0.94.7
Aphpkb Aphpkb 0.93.9
Aphpkb Aphpkb 0.93.8
Aphpkb Aphpkb 0.93.1
Aphpkb Aphpkb 0.95
Aphpkb Aphpkb 0.94.9
Aphpkb Aphpkb 0.94.2
Aphpkb Aphpkb 0.94.1
Aphpkb Aphpkb 0.93.3
Aphpkb Aphpkb 0.93.2
Aphpkb Aphpkb 0.92.2
Aphpkb Aphpkb 0.92.1
Aphpkb Aphpkb 0.88.6
Aphpkb Aphpkb 0.88.5
Aphpkb Aphpkb 0.82
Aphpkb Aphpkb 0.81
Aphpkb Aphpkb 0.80
Aphpkb Aphpkb 0.73
Aphpkb Aphpkb 0.72
Aphpkb Aphpkb 0.63
Aphpkb Aphpkb 0.62
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »