Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sid vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4911
SQL injection vulnerability in classi/detail.php in PHP Classifieds Ads allows remote malicious users to execute arbitrary SQL commands via the sid parameter.
Sellatsite Php Classifieds Ads
1 EDB exploit
9.8
CVSSv3
CVE-2018-6575
SQL Injection exists in the JEXTN Classified 1.0.0 component for Joomla! via a view=boutique&sid= request.
Jextn Classified 1.0.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-17624
PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter.
Php Multivendor Ecommerce Project Php Multivendor Ecommerce 1.0
1 EDB exploit
NA
CVE-2006-6208
Multiple SQL injection vulnerabilities in Enthrallweb eClassifieds allow remote malicious users to execute arbitrary SQL commands via the (1) AD_ID, (2) cat_id, (3) sub_id, and (4) ad_id parameters to (a) ad.asp, the (5) cid parameter to (b) dircat.asp, and the (6) sid parameter ...
Enthrallweb Eclassifieds
3 EDB exploits
7
CVSSv3
CVE-2018-8134
An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions, aka "Windows Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 ...
Microsoft Windows Server 2016 1709
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1607
Microsoft Windows 10 1709
Microsoft Windows Rt 8.1
Microsoft Windows 8.1
Microsoft Windows 7
Microsoft Windows 10 -
Microsoft Windows Server 2016 1803
Microsoft Windows Server 2016
Microsoft Windows 10 1703
Microsoft Windows 10 1803
1 EDB exploit
1 Article
NA
CVE-2017-15000
libextractor: CVE-2017-17440: various null pointer dereferences in GIF, IT, NSFE, S3M, SID and XM plugins
NA
CVE-2007-3060
Multiple cross-site scripting (XSS) vulnerabilities in PHP Live! 3.2.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) sid parameter to (a) chat.php, (2) LANG[DEFAULT_BRANDING] and (3) PHPLIVE_VERSION parameters to (b) help.php, the (4) admin[name]...
Osi Codes Inc. Phplive 3.2.2
5 EDB exploits
NA
CVE-2009-2587
Multiple cross-site scripting (XSS) vulnerabilities in DragDropCart allow remote malicious users to inject arbitrary web script or HTML via the (1) sid parameter to assets/js/ddcart.php, the (2) prefix parameter to includes/ajax/getstate.php, the search parameter to (3) index.php...
Dragdropcart Dragdropcart -
6 EDB exploits
7.5
CVSSv3
CVE-2017-15600
In GNU Libextractor 1.4, there is a NULL Pointer Dereference in the EXTRACTOR_nsf_extract_method function of plugins/nsf_extractor.c.
Gnu Libextractor 1.4
7.5
CVSSv3
CVE-2017-15602
In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTOR_nsfe_extract_method function in plugins/nsfe_extractor.c, leading to an infinite loop for a crafted size.
Gnu Libextractor 1.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »