Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s4avrd0w vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5727
SQL injection vulnerability in modules/auth/password_recovery.php in AIST NetCat 3.12 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the query string.
Netcat Netcat 2.0
Netcat Netcat 1.1
Netcat Netcat 3.0
Netcat Netcat 2.4
Netcat Netcat 2.3
Netcat Netcat
Netcat Netcat 2.2
Netcat Netcat 2.1
1 EDB exploit
NA
CVE-2008-5728
Multiple directory traversal vulnerabilities in AIST NetCat 3.12 and previous versions, when magic_quotes_gpc is disabled and register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in (1) the system parameter in m...
Netcat Netcat 2.3
Netcat Netcat 2.2
Netcat Netcat
Netcat Netcat 1.1
Netcat Netcat 3.0
Netcat Netcat 2.4
Netcat Netcat 2.1
Netcat Netcat 2.0
1 EDB exploit
NA
CVE-2008-5730
Multiple CRLF injection vulnerabilities in AIST NetCat 3.12 and previous versions allow remote malicious users to have an unknown impact via unspecified vectors involving (1) a %0a sequence in a cookie and (2) the add.php file.
Netcat Netcat 2.1
Netcat Netcat 2.0
Netcat Netcat 3.0
Netcat Netcat 2.4
Netcat Netcat
Netcat Netcat 1.1
Netcat Netcat 2.3
Netcat Netcat 2.2
1 EDB exploit
NA
CVE-2008-5742
Multiple open redirect vulnerabilities in AIST NetCat 3.12 and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via (1) the redirect parameter in a logoff action to modules/auth/index.php or (2) the url parameter...
Netcat Netcat 2.0
Netcat Netcat 1.1
Netcat Netcat
Netcat Netcat 3.0
Netcat Netcat 2.2
Netcat Netcat 2.1
Netcat Netcat 2.4
Netcat Netcat 2.3
1 EDB exploit
NA
CVE-2008-5877
Multiple SQL injection vulnerabilities in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and previous versions, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) page parameter to index.php, (2) form_id parameter to pcw/proc...
Phpclanwebsite Phpclanwebsite 1.23.1
Phpclanwebsite Phpclanwebsite 1.22
Phpclanwebsite Phpclanwebsite 1.23.2
Phpclanwebsite Phpclanwebsite
Phpclanwebsite Phpclanwebsite 1.20
Phpclanwebsite Phpclanwebsite 1.21
Phpclanwebsite Phpclanwebsite 1.23
1 EDB exploit
NA
CVE-2008-5879
Cross-site scripting (XSS) vulnerability in index.php in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and previous versions, allows remote malicious users to inject arbitrary web script or HTML via the page parameter and other unspecified vectors.
Phpclanwebsite Phpclanwebsite 1.20
Phpclanwebsite Phpclanwebsite 1.23.1
Phpclanwebsite Phpclanwebsite 1.22
Phpclanwebsite Phpclanwebsite 1.23.2
Phpclanwebsite Phpclanwebsite 1.21
Phpclanwebsite Phpclanwebsite 1.23
Phpclanwebsite Phpclanwebsite
1 EDB exploit
NA
CVE-2008-6844
The registration view (/user/register) in eZ Publish 3.5.6 and previous versions, and possibly other versions prior to 3.9.5, 3.10.1, and 4.0.1, allows remote malicious users to gain privileges as other users via modified ContentObjectAttribute_data_user_login_30, ContentObjectAt...
Ez Ez Publish 3.4.8
Ez Ez Publish 3.5.4
Ez Ez Publish 3.5.5
Ez Ez Publish 3.6.5
Ez Ez Publish 3.6.2
Ez Ez Publish 3.8.9
Ez Ez Publish 3.9.4
Ez Ez Publish 3.10
Ez Ez Publish 3.9.2
Ez Ez Publish 3.6.1
Ez Ez Publish 3.5.7
Ez Ez Publish 3.7.3
Ez Ez Publish 3.7.0
Ez Ez Publish 4.0
Ez Ez Publish 3.8.8
Ez Ez Publish 3.6.0
Ez Ez Publish 3.6.3
Ez Ez Publish 3.7.2
Ez Ez Publish 3.9.1
Ez Ez Publish
Ez Ez Publish 3.5.8
Ez Ez Publish 3.6.4
1 EDB exploit
NA
CVE-2008-5878
Multiple directory traversal vulnerabilities in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and previous versions, when magic_quotes_gpc is disabled and register_globals is enabled, allow remote malicious users to include and execute arbitrary files via a .. (dot dot) in the (1) b...
Phpclanwebsite Phpclanwebsite 1.22
Phpclanwebsite Phpclanwebsite 1.21
Phpclanwebsite Phpclanwebsite 1.23.1
Phpclanwebsite Phpclanwebsite 1.23
Phpclanwebsite Phpclanwebsite 1.20
Phpclanwebsite Phpclanwebsite
Phpclanwebsite Phpclanwebsite 1.23.2
1 EDB exploit
NA
CVE-2008-5729
Multiple cross-site scripting (XSS) vulnerabilities in AIST NetCat 3.12 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) form and (2) control parameters to FCKeditor/neditor.php, and the (3) path parameter to admin/siteinfo/ifr...
Netcat Netcat 2.3
Netcat Netcat 2.2
Netcat Netcat
Netcat Netcat 1.1
Netcat Netcat 3.0
Netcat Netcat 2.4
Netcat Netcat 2.1
Netcat Netcat 2.0
1 EDB exploit
NA
CVE-2008-6853
SQL injection vulnerability in modules/poll/index.php in AIST NetCat 3.0 and 3.12 allows remote malicious users to execute arbitrary SQL commands via the PollID parameter.
Netcat Netcat 3.0
Netcat Netcat 3.12
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon