Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-3775
SQL injection vulnerability in the init function in class_session.php in MyBB (aka MyBulletinBoard) 1.1.5 allows remote malicious users to execute arbitrary SQL commands via the CLIENT-IP HTTP header ($_SERVER['HTTP_CLIENT_IP'] variable), as utilized by index.php.
Mybulletinboard Mybulletinboard 1.1.5
1 EDB exploit
7.5
CVSSv2
CVE-2006-4042
Multiple SQL injection vulnerabilities in trackback.php in myWebland myBloggie 2.1.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) title, (2) url, (3) excerpt, or (4) blog_name parameters.
Mywebland Mybloggie
1 EDB exploit
5
CVSSv2
CVE-2005-2792
Directory traversal vulnerability in welcome.php in phpLDAPadmin 0.9.6 and 0.9.7 allows remote malicious users to read arbitrary files via a .. (dot dot) in the custom_welcome_page parameter.
Phpldapadmin Project Phpldapadmin 0.9.6
Phpldapadmin Project Phpldapadmin 0.9.7
1 EDB exploit
5
CVSSv2
CVE-2005-2956
ATutor 1.5.1, and possibly earlier versions, stores temporary chat logs under the web document root with insufficient access control and predictable filenames, which allows remote malicious users to obtain user chat conversations via direct requests to those files.
Adaptive Technology Resource Centre Atutor 1.5.1
1 EDB exploit
7.5
CVSSv2
CVE-2005-3968
SQL injection vulnerability in auth.inc.php in PHPX 3.5.9 and previous versions allows remote malicious users to execute arbitrary SQL commands, bypass authentication, and upload arbitrary PHP code via the username parameter.
Phpx Phpx 3.5.9
Phpx Phpx 3.5.2
Phpx Phpx 3.5
Phpx Phpx 3.5.3
Phpx Phpx 3.5.7
Phpx Phpx 3.5.1
Phpx Phpx 3.5.8
Phpx Phpx 3.5.4
Phpx Phpx 3.5.5
Phpx Phpx 3.5.6
1 EDB exploit
7.5
CVSSv2
CVE-2009-3967
SQL injection vulnerability in browse.php in Ed Charkow SuperCharged Linking allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ed Charkow Supercharged Linking
1 EDB exploit
7.5
CVSSv2
CVE-2007-1292
SQL injection vulnerability in inlinemod.php in Jelsoft vBulletin prior to 3.5.8, and prior to 3.6.5 in the 3.6.x series, might allow remote authenticated users to execute arbitrary SQL commands via the postids parameter. NOTE: the vendor states that the attack is feasible only i...
Jelsoft Vbulletin 3.6.0
Jelsoft Vbulletin 3.6.5
Jelsoft Vbulletin
Jelsoft Vbulletin 3.6.1
Jelsoft Vbulletin 3.6.2
Jelsoft Vbulletin 3.6.3
Jelsoft Vbulletin 3.6.4
1 EDB exploit
6.8
CVSSv2
CVE-2007-1411
Buffer overflow in PHP 4.4.6 and previous versions, and unspecified PHP 5 versions, allows local and possibly remote malicious users to execute arbitrary code via long server name arguments to the (1) mssql_connect and (2) mssql_pconnect functions.
Php Php
1 EDB exploit
9.3
CVSSv2
CVE-2007-2079
The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and previous versions for Windows uses untrusted input for the database server hostname, which allows remote malicious users to trigger a library buffer overflow and execute arbitrary code via a long host paramete...
Xampp Apache Distribution
1 EDB exploit
6.4
CVSSv2
CVE-2007-5219
Directory traversal vulnerability in the CLAVSetting.CLSetting.1 ActiveX control in CLAVSetting.DLL 1.00.1829 in the CLAVSetting module in CyberLink PowerDVD 7.0 allows remote malicious users to create or overwrite arbitrary files via a .. (dot dot) in the argument to the CreateN...
Cyberlink Powerdvd 7.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »