Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s4r4d0 vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2009-4713
Multiple cross-site scripting (XSS) vulnerabilities in the Qas (aka Quas) module for XOOPS Celepar allow remote malicious users to inject arbitrary web script or HTML via (1) the cod_categoria parameter to categoria.php, (2) the opcao parameter to index.php, and the PATH_INFO to ...
Alexandre Amaral Xoops Celepar 1.0.1
1 EDB exploit
755
VMScore
CVE-2009-4360
SQL injection vulnerability in modules/content/index.php in the Content module 0.5 for XOOPS allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Handcoders Content Module 0.5
1 EDB exploit
435
VMScore
CVE-2009-4714
Cross-site scripting (XSS) vulnerability in the quiz module for XOOPS Celepar allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to cadastro_usuario.php.
Alexandre Amaral Xoops Celepar 1.0.1
1 EDB exploit
515
VMScore
CVE-2009-4512
Directory traversal vulnerability in index.php in Oscailt 3.3, when Use Friendly URL's is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the obj_id parameter.
Indymedia Oscailt 3.3
1 EDB exploit
760
VMScore
CVE-2009-4698
Multiple SQL injection vulnerabilities in the Qas (aka Quas) module for XOOPS Celepar allow remote malicious users to execute arbitrary SQL commands via the codigo parameter to (1) aviso.php and (2) imprimir.php, and the (3) cod_categoria parameter to categoria.php.
Alexandre Amaral Xoops Celepar 1.0.1
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started