Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r3d-d3v!l vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-5974
Multiple SQL injection vulnerabilities in login.aspx in Active Price Comparison 4.0 allow remote malicious users to execute arbitrary SQL commands via the (1) password and (2) username fields.
Activewebsoftwares Active Price Comparison 4.0
2 EDB exploits
7.5
CVSSv2
CVE-2008-6809
SQL injection vulnerability in hotel_habitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote malicious users to execute arbitrary SQL commands via the HotelID parameter.
Bookingcentre Booking System For Hotels Group 2.01
2 EDB exploits
7.5
CVSSv2
CVE-2011-0645
SQL injection vulnerability in data.php in PHPCMS 2008 V2 allows remote malicious users to execute arbitrary SQL commands via the where_time parameter in a get action.
Phpcms Phpcms 2008 2
2 EDB exploits
7.5
CVSSv2
CVE-2013-7192
Multiple SQL injection vulnerabilities in Dynamic Biz Website Builder (QuickWeb) allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to apps/news-events/newdetail.asp, or the (2) UserID or (3) Password to login.asp.
Etoshop Dynamic Biz Website Builder Quickweb 1.0
2 EDB exploits
7.5
CVSSv2
CVE-2013-7193
Multiple SQL injection vulnerabilities in C2C Forward Auction Creator 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) pa parameter to auction/asp/list.asp, or the (2) UserID or (3) Password to auction/casp/admin.asp.
Etoshop C2c Forward Auction Creator 2.0
2 EDB exploits
7.5
CVSSv2
CVE-2009-2614
SQL injection vulnerability in z_admin_login.asp in DataCheck Solutions LinkPal 1.x allows remote malicious users to execute arbitrary SQL commands via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party infor...
Datachecknh Linkpal 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-5958
Multiple SQL injection vulnerabilities in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the QuizID parameter to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp.
Activewebsoftwares Active Test 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-5959
Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from...
Active Web Softwares Active Test 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2010-0975
PHP remote file inclusion vulnerability in external.php in PHPCityPortal allows remote malicious users to execute arbitrary PHP code via a URL in the url parameter.
Phpcityportal Phpcityportal
1 EDB exploit
7.5
CVSSv2
CVE-2008-6364
SQL injection vulnerability in logon_process.jsp in Ad Server Solutions Banner Exchange Solution Java allows remote malicious users to execute arbitrary SQL commands via the (1) username (uname parameter) and (2) password (pass parameter). NOTE: some of these details are obtained...
Adserversolutions Banner Exchange Software -
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »