Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r3d-d3v!l vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-5958
Multiple SQL injection vulnerabilities in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the QuizID parameter to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp.
Activewebsoftwares Active Test 2.1
1 EDB exploit
755
VMScore
CVE-2008-5959
Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from...
Active Web Softwares Active Test 2.1
1 EDB exploit
755
VMScore
CVE-2011-0644
SQL injection vulnerability in include/admin/model_field.class.php in PHPCMS 2008 V2 allows remote malicious users to execute arbitrary SQL commands via the modelid parameter to flash_upload.php.
Phpcms Phpcms 2008 2
1 EDB exploit
755
VMScore
CVE-2008-6873
SQL injection vulnerability in Active Web Mail 4.0 allows remote malicious users to execute arbitrary SQL commands via the TabOpenQuickTab1 parameter to (1) popaccounts.aspx, (2) addressbook.aspx, and (3) emails.aspx.
Activewebsoftwares Active Web Mail 4.0
1 EDB exploit
755
VMScore
CVE-2010-2254
SQL injection vulnerability in the Shape5 Bridge of Hope template for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in an article action to index.php.
Shape5 Bridge Of Hope Template
1 EDB exploit
435
VMScore
CVE-2010-2256
Multiple cross-site scripting (XSS) vulnerabilities in Pay Per Minute Video Chat Script 2.0 and 2.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to admin/memberviewdetails.php and the (2) model parameter to videos.php.
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.0
Payperviewvideosoftware Pay Per Minute Video Chat Script 2.1
1 EDB exploit
755
VMScore
CVE-2009-0297
SQL injection vulnerability in login_check.asp in ClickAuction allows remote malicious users to execute arbitrary SQL commands via the (1) txtEmail and (2) txtPassword parameters. NOTE: some of these details are obtained from third party information.
Clicktech Clickauction Nil
1 EDB exploit
755
VMScore
CVE-2009-4436
Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote malicious users to execute arbitrary SQL commands via the QuizID parameter to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp, different vectors than CVE-2007-1706.
Activewebsoftwares Ewebquiz 8.0
1 EDB exploit
755
VMScore
CVE-2009-4437
Multiple SQL injection vulnerabilities in Active Auction House 3.6 allow remote malicious users to execute arbitrary SQL commands via the (1) catid parameter to wishlist.asp and the (2) linkid parameter to links.asp. NOTE: vector 1 might overlap CVE-2005-1029.1.
Activewebsoftwares Active Auction House 3.6
1 EDB exploit
755
VMScore
CVE-2010-0975
PHP remote file inclusion vulnerability in external.php in PHPCityPortal allows remote malicious users to execute arbitrary PHP code via a URL in the url parameter.
Phpcityportal Phpcityportal
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »