Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3200
Multiple cross-site scripting (XSS) vulnerabilities in Utopia News Pro (UNP) 1.1.3 and 1.1.4 allow remote malicious users to inject arbitrary web script or HTML via (1) the sitetitle parameter in header.php and (2) the version and (3) query_count parameters in footer.php.
Utopia Software Utopia News Pro 1.1.4
Utopia Software Utopia News Pro 1.1.3
2 EDB exploits
NA
CVE-2006-7172
Multiple SQL injection vulnerabilities in php-stats.recphp.php in PHP-Stats 0.1.9.1b and previous versions allow remote malicious users to execute arbitrary code via a leading dotted-quad IP address string in the (1) PC-REMOTE-ADDR HTTP header, which is inserted into $_SERVER[...
Php-stats Php-stats
2 EDB exploits
NA
CVE-2007-2856
Buffer overflow in the Dart Communications PowerTCP ZIP Compression ActiveX control in DartZip.dll 1.8.5.3, when Internet Explorer 6 is used, allows user-assisted remote malicious users to execute arbitrary code via a long first argument to the QuickZip function, a related issue ...
Dart Powertcp Zip Compression 1.8.5.3
2 EDB exploits
NA
CVE-2005-4208
Directory traversal vulnerability in Flatnuke 2.5.6 allows remote malicious users to access arbitrary files via a .. (dot dot) and null byte (%00) in the id parameter of the read module.
Flatnuke Flatnuke 2.5.6
2 EDB exploits
NA
CVE-2006-4558
DeluxeBB 1.06 and previous versions, when run on the Apache HTTP Server with the mod_mime module, allows remote malicious users to execute arbitrary PHP code by uploading files with double extensions via the fileupload parameter in a newthread action in newpost.php.
Deluxebb Deluxebb
1 EDB exploit
NA
CVE-2006-1916
Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies parameters.
Dbbs Dbbs 2.0
Dbbs Dbbs
1 EDB exploit
NA
CVE-2006-2065
SQL injection vulnerability in save.php in PHPSurveyor 0.995 and previous versions allows remote malicious users to execute arbitrary SQL commands via the surveyid cookie. NOTE: this issue could be leveraged to execute arbitrary PHP code, as demonstrated by inserting directory tr...
Phpsurveyor Phpsurveyor 0.97 Beta
Phpsurveyor Phpsurveyor 0.98 Beta
Phpsurveyor Phpsurveyor 0.98 Stable
Phpsurveyor Phpsurveyor 0.99
Phpsurveyor Phpsurveyor 0.991
Phpsurveyor Phpsurveyor 0.992
Phpsurveyor Phpsurveyor 0.96 Beta
Phpsurveyor Phpsurveyor 0.993
Phpsurveyor Phpsurveyor 0.995
1 EDB exploit
NA
CVE-2006-2156
Directory traversal vulnerability in help/index.php in X7 Chat 2.0 and previous versions allows remote malicious users to include arbitrary files via .. (dot dot) sequences in the help_file parameter.
X7 Group X7 Chat 1.3.2b
X7 Group X7 Chat 1.3.3b
X7 Group X7 Chat 1.3.4b
X7 Group X7 Chat 1.3.5b
X7 Group X7 Chat 1.3.6
X7 Group X7 Chat 2.0
1 EDB exploit
NA
CVE-2005-3130
SQL injection vulnerability in lucidCMS 1.0.11 allows remote malicious users to execute arbitrary SQL commands via the login field.
Lucidcms Lucidcms 1.0.11
1 EDB exploit
NA
CVE-2005-3259
Multiple SQL injection vulnerabilities in versatileBulletinBoard (vBB) 1.0.0 RC2 allow remote malicious users to execute arbitrary SQL commands and bypass authentication via the (1) login field, (2) "search this thread" feature, (3) "search for posts" feature,...
Versatilebulletinboard Versatilebulletinboard 1.0.0.rc2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »