Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r3d-d3v!l vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-7192
Multiple SQL injection vulnerabilities in Dynamic Biz Website Builder (QuickWeb) allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to apps/news-events/newdetail.asp, or the (2) UserID or (3) Password to login.asp.
Etoshop Dynamic Biz Website Builder Quickweb 1.0
2 EDB exploits
NA
CVE-2013-7193
Multiple SQL injection vulnerabilities in C2C Forward Auction Creator 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) pa parameter to auction/asp/list.asp, or the (2) UserID or (3) Password to auction/casp/admin.asp.
Etoshop C2c Forward Auction Creator 2.0
2 EDB exploits
NA
CVE-2010-5047
SQL injection vulnerability in page.php in V-EVA Press Release Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
V-eva Press Release Script
1 EDB exploit
NA
CVE-2011-0645
SQL injection vulnerability in data.php in PHPCMS 2008 V2 allows remote malicious users to execute arbitrary SQL commands via the where_time parameter in a get action.
Phpcms Phpcms 2008 2
2 EDB exploits
NA
CVE-2011-0644
SQL injection vulnerability in include/admin/model_field.class.php in PHPCMS 2008 V2 allows remote malicious users to execute arbitrary SQL commands via the modelid parameter to flash_upload.php.
Phpcms Phpcms 2008 2
1 EDB exploit
NA
CVE-2010-2254
SQL injection vulnerability in the Shape5 Bridge of Hope template for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in an article action to index.php.
Shape5 Bridge Of Hope Template
1 EDB exploit
NA
CVE-2010-2256
Multiple cross-site scripting (XSS) vulnerabilities in Pay Per Minute Video Chat Script 2.0 and 2.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to admin/memberviewdetails.php and the (2) model parameter to videos.php.
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.0
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.1
1 EDB exploit
NA
CVE-2010-2257
SQL injection vulnerability in index_ie.php in Pay Per Minute Video Chat Script 2.0 and 2.1 allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.0
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.1
1 EDB exploit
NA
CVE-2010-0974
Multiple SQL injection vulnerabilities in PHPCityPortal allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) video_show.php, (2) spotlight_detail.php, (3) real_estate_details.php, and (4) auto_details.php.
Phpcityportal Phpcityportal
1 EDB exploit
NA
CVE-2010-0975
PHP remote file inclusion vulnerability in external.php in PHPCityPortal allows remote malicious users to execute arbitrary PHP code via a URL in the url parameter.
Phpcityportal Phpcityportal
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »