Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
preprojects vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-2914
SQL injection vulnerability in jobseekers/JobSearch3.php (aka the search module) in PHP JOBWEBSITE PRO allows remote malicious users to execute arbitrary SQL commands via the (1) kw or (2) position parameter. NOTE: some of these details are obtained from third party information.
Preprojects Php Jobwebsite Pro
1 EDB exploit
7.5
CVSSv2
CVE-2008-2915
Multiple SQL injection vulnerabilities in jobseekers/JobSearch.php (aka the search module) in Pre Job Board allow remote malicious users to execute arbitrary SQL commands via the (1) position or (2) kw parameter.
Preprojects Pre Job Board
1 EDB exploit
6.8
CVSSv2
CVE-2008-2916
Multiple SQL injection vulnerabilities in Pre ADS Portal 2.0 and previous versions, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) cid parameter to showcategory.php and the (2) id parameter to software-description.php...
Preprojects Pre Ads Portal
1 EDB exploit
7.5
CVSSv2
CVE-2008-2917
SQL injection vulnerability in productsofcat.asp in E-SMART CART allows remote malicious users to execute arbitrary SQL commands via the category_id parameter.
Preprojects E-smart Cart
1 EDB exploit
7.5
CVSSv2
CVE-2011-5139
SQL injection vulnerability in page.php in Pre Studio Business Cards Designer allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Preprojects Business Cards Designer -
1 EDB exploit
7.5
CVSSv2
CVE-2008-6231
Pre Classified Listing PHP allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Classified Listings -
2 EDB exploits
7.5
CVSSv2
CVE-2012-5333
SQL injection vulnerability in page.php in Pre Printing Press allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Preprojects Pre Printing Press -
1 EDB exploit
4.3
CVSSv2
CVE-2008-6715
Multiple cross-site scripting (XSS) vulnerabilities in Pre ADS Portal 2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the msg parameter to (1) homeadmin/adminhome.php and (2) homeadmin/signinform.php.
Preprojects Pre Ads Portal
1 EDB exploit
7.5
CVSSv2
CVE-2008-6716
homeadmin/adminhome.php in Pre ADS Portal 2.0 and previous versions does not require administrative authentication, which allows remote malicious users to have an unspecified impact via a direct request.
Preprojects Pre Ads Portal
1 EDB exploit
7.5
CVSSv2
CVE-2012-5334
SQL injection vulnerability in product_desc.php in Pre Printing Press allows remote malicious users to execute arbitrary SQL commands via the pid parameter.
Preprojects Pre Printing Press -
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »