Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r0t vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2808
Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows remote malicious users to inject arbitrary web script or HTML via the database parameter.
Gnu Gnats 4.1.99
Yngve Svendsen Gnatsweb 4.00
NA
CVE-2005-4485
Multiple cross-site scripting (XSS) vulnerabilities in ProjectApp 3.3 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the keywords parameter to (1) forums.asp, (2) search_employees.asp, (3) cat.asp, and (4) links.asp; (5) projectid pa...
Iatek Projectapp
7 EDB exploits
NA
CVE-2005-4243
Multiple SQL injection vulnerabilities in QuickPayPro 3.1 allow remote malicious users to execute arbitrary SQL commands via the (1) popupid parameter in popups.edit.php; (2) so, (3) sb, and (4) nr parameters in customer.tickets.view.php; (5) subrackingid parameter in subscribers...
Quickpaypro Quickpaypro 3.1
6 EDB exploits
NA
CVE-2006-2255
Multiple SQL injection vulnerabilities in Creative Community Portal 1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) article_id parameter to (a) ArticleView.php, (2) forum_id parameter to (b) DiscView.php or (c) Discussions.php,...
Creative Software Community Portal 1.1
6 EDB exploits
NA
CVE-2006-1413
Multiple cross-site scripting (XSS) vulnerabilities in EZHomepagePro 1.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) adid or (2) aname parameter in (a) common/email.asp, (b) users/users_search.asp, or (c) users/users_profi...
Htmljunction Ezhomepagepro
5 EDB exploits
NA
CVE-2006-3009
Multiple cross-site scripting (XSS) vulnerabilities in Open Business Management (OBM) 1.0.3 pl1 allow remote malicious users to inject arbitrary HTML or web script via the (1) tf_lang, (2) tf_name, (3) tf_user, (4) tf_lastname, (5) tf_contact, (6) tf_datebefore, and (7) tf_dateaf...
Aliacom Open Business Management 1.0.3 Pl1
5 EDB exploits
NA
CVE-2006-2016
Multiple cross-site scripting (XSS) vulnerabilities in phpLDAPadmin 0.9.8 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) dn parameter in (a) compare_form.php, (b) copy_form.php, (c) rename_form.php, (d) template_engine.php, a...
Phpldapadmin Project Phpldapadmin
Debian Debian Linux 3.0
Debian Debian Linux 3.1
5 EDB exploits
NA
CVE-2005-3938
SQL injection vulnerability in Softbiz FAQ Script 1.1 and earler allows remote malicious users to execute arbitrary SQL commands via the id parameter in (1) index.php, (2) faq_qanda.php, (3) refer_friend.php, (4) print_article.php, or (5) add_comment.php.
Softbiz Faq
5 EDB exploits
NA
CVE-2006-1508
Multiple cross-site scripting (XSS) vulnerabilities in MH Software Connect Daily Web Calendar Software 3.2.9 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) calendar_id, (2) style_sheet, and (3) start parameters in (a) ViewDay...
Mh Software Connect Daily
Mh Software Connect Daily 3.2.8
5 EDB exploits
NA
CVE-2005-4380
Multiple SQL injection vulnerabilities in Bitweaver 1.1 and 1.1.1 beta allow remote malicious users to execute arbitrary SQL commands via the (1) sort_mode parameter to (a) fisheye/list_galleries.php, (b) messages/message_box.php, and (c) users/my.php; the (2) post_id parameter t...
Bitweaver Bitweaver 1.1
Bitweaver Bitweaver 1.1.1 Beta
5 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »