Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oon_boy vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-1411
SQL injection vulnerability in events/inc/events.inc.php in the Events plugin for Seditio CMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the c parameter to plug.php.
Neocrome Seditio 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3349
SQL injection vulnerability in Datavore Gyro 5.0 allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a cat action to the home component.
Datavore Gyro 5.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-3348
Cross-site scripting (XSS) vulnerability in Datavore Gyro 5.0 allows remote malicious users to inject arbitrary web script or HTML via the cid parameter in a cat action to the home component.
Datavore Gyro 5.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3495
SQL injection vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote malicious users to execute arbitrary SQL commands via the mag_id parameter, a different vector than CVE-2008-4465.
Vastal Dvd Zone
1 EDB exploit
4.3
CVSSv2
CVE-2009-3496
Cross-site scripting (XSS) vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote malicious users to inject arbitrary web script or HTML via the mag_id parameter.
Vastal Dvd Zone
1 EDB exploit
7.5
CVSSv2
CVE-2009-3436
Multiple SQL injection vulnerabilities in forum.asp in MaxWebPortal allow remote malicious users to execute arbitrary SQL commands via the (1) FORUM_ID or (2) CAT_ID parameter. NOTE: this might overlap CVE-2005-1417.
Maxwebportal Maxwebportal
1 EDB exploit
5
CVSSv2
CVE-2009-1621
Directory traversal vulnerability in index.php in OpenCart 1.1.8 allows remote malicious users to read arbitrary files via a .. (dot dot) in the route parameter.
Opencart Opencart 1.1.8
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started