Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r45c4l vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2008-3954
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote malicious users to execute arbitrary SQL commands via the cat parameter in a showcat action.
Alstrasoft Forum Pay Per Post Exchange
2 EDB exploits
435
VMScore
CVE-2008-4187
Directory traversal vulnerability in index.php in ProActive CMS allows remote malicious users to read arbitrary files via a .. (dot dot) in the template parameter.
Proactive Cms Proactive Cms
1 EDB exploit
755
VMScore
CVE-2008-4347
SQL injection vulnerability in newskom.php in Powie pNews 2.03 allows remote malicious users to execute arbitrary SQL commands via the newsid parameter.
Powie Pnews 2.03
1 EDB exploit
755
VMScore
CVE-2008-4354
SQL injection vulnerability in the products module in NetArt Media iBoutique 4.0 allows remote malicious users to execute arbitrary SQL commands via the cat parameter to index.php.
Net Art Media Iboutique 4.0
1 EDB exploit
785
VMScore
CVE-2008-4361
Directory traversal vulnerability in PowerPortal 2.0.13 allows remote malicious users to list and possibly read arbitrary files via a .. (dot dot) in the path parameter to the default URI.
Powerportal Powerportal 2.0.13
1 EDB exploit
755
VMScore
CVE-2008-4458
SQL injection vulnerability in listings.php in E-Php B2B Trading Marketplace Script allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a product action.
E-php Scripts B2b Trading Marketplace Script
1 EDB exploit
755
VMScore
CVE-2008-6451
SQL injection vulnerability in humor.php in jPORTAL 2 allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: this might overlap CVE-2004-2036 or CVE-2005-3509.
Jportal Jportal 2
1 EDB exploit
755
VMScore
CVE-2008-6469
SQL injection vulnerability in index.php in PlainCart 1.1.2 allows remote malicious users to execute arbitrary SQL commands via the p parameter.
Plaincart Plaincart 1.1.2
1 EDB exploit
755
VMScore
CVE-2008-6525
SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote malicious users to execute arbitrary SQL commands via the Password parameter (aka the pass field).
Nicephpscripts Nice Php Faq Script
1 EDB exploit
505
VMScore
CVE-2008-7008
HyperStop Web Host Directory 1.2 allows remote malicious users to bypass authentication and download a database backup via a direct request to admin/backup/db.
Hyperstop Web Host Directory 1.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »