Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pouya_server vulnerabilities and exploits
(subscribe to this query)
460
VMScore
CVE-2008-6325
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Classifieds Script allow remote malicious users to inject arbitrary web script or HTML via the (1) radio parameter to showcategory.php, (2) msg parameter to advertisers/signinform.php, (3) radio parameter to gallery.p...
Softbizscripts Classifieds Script -
6 EDB exploits
445
VMScore
CVE-2008-6891
Multiple cross-site scripting (XSS) vulnerabilities in ASP Forum Script allow remote malicious users to inject arbitrary web script or HTML via the (1) forum_id parameter to (a) new_message.asp and (b) messages.asp, and the (2) query string to default.asp.
Codetoad Asp Forum Script
3 EDB exploits
755
VMScore
CVE-2008-5923
SQL injection vulnerability in default.asp in ASP-DEv XM Events Diary allows remote malicious users to execute arbitrary SQL commands the cat parameter.
Asp-dev Xm Events Diary
1 EDB exploit
755
VMScore
CVE-2008-5926
Multiple SQL injection vulnerabilities in login.asp in ASP-DEv Internal E-Mail System allow remote malicious users to execute arbitrary SQL commands via the (1) login parameter (aka user field) or the (2) password parameter (aka pass field). NOTE: some of these details are obtain...
Asp-dev Internal E-mail System
1 EDB exploit
755
VMScore
CVE-2008-5930
SQL injection vulnerability in admin/blog_comments.asp in The Net Guys ASPired2Blog allows remote malicious users to execute arbitrary SQL commands via the BlogID parameter.
The Net Guys Aspired2blog
1 EDB exploit
755
VMScore
CVE-2008-5977
SQL injection vulnerability in siteadmin/forgot.php in PHP JOBWEBSITE PRO allows remote malicious users to execute arbitrary SQL commands via the adname parameter in a Submit action.
Preprojects Php Jobwebsite Pro
1 EDB exploit
505
VMScore
CVE-2009-0249
Katy Whitton RankEm stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing credentials via a direct request for database/topsites.mdb.
Katywhitton Rankem
1 EDB exploit
755
VMScore
CVE-2008-0753
SQL injection vulnerability in calendar.php in Virtual War (VWar) 1.5 allows remote malicious users to execute arbitrary SQL commands via the month parameter.
Vwar Virtual War 1.5
1 EDB exploit
435
VMScore
CVE-2008-6847
Cross-site scripting (XSS) vulnerability in Employee/emp_login.asp in Pre ASP Job Board allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Preproject Pre Asp Job Board -
1 EDB exploit
505
VMScore
CVE-2008-5931
The Net Guys ASPired2Blog stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file containing usernames and passwords via a direct request for admin/blog.mdb. NOTE: some of these details ar...
The Net Guys Aspired2blog
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »