Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s4r4d0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4360
SQL injection vulnerability in modules/content/index.php in the Content module 0.5 for XOOPS allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Handcoders Content Module 0.5
1 EDB exploit
NA
CVE-2009-4714
Cross-site scripting (XSS) vulnerability in the quiz module for XOOPS Celepar allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to cadastro_usuario.php.
Alexandre Amaral Xoops Celepar 1.0.1
1 EDB exploit
NA
CVE-2009-4713
Multiple cross-site scripting (XSS) vulnerabilities in the Qas (aka Quas) module for XOOPS Celepar allow remote malicious users to inject arbitrary web script or HTML via (1) the cod_categoria parameter to categoria.php, (2) the opcao parameter to index.php, and the PATH_INFO to ...
Alexandre Amaral Xoops Celepar 1.0.1
1 EDB exploit
NA
CVE-2009-4512
Directory traversal vulnerability in index.php in Oscailt 3.3, when Use Friendly URL's is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the obj_id parameter.
Indymedia Oscailt 3.3
1 EDB exploit
NA
CVE-2009-4698
Multiple SQL injection vulnerabilities in the Qas (aka Quas) module for XOOPS Celepar allow remote malicious users to execute arbitrary SQL commands via the codigo parameter to (1) aviso.php and (2) imprimir.php, and the (3) cod_categoria parameter to categoria.php.
Alexandre Amaral Xoops Celepar 1.0.1
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon