Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
silentz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2599
Multiple SQL injection vulnerabilities in TutorialCMS (aka Photoshop Tutorials) 1.00 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) catFile parameter to (a) browseCat.php or (b) browseSubCat.php; the (2) id parameter to (c) openTu...
Wavelink Media Tutorialcms
1 EDB exploit
NA
CVE-2007-2622
Multiple SQL injection vulnerabilities in TaskDriver 1.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the username parameter to login.php or (2) the taskid parameter to notes.php.
Taskdriver Taskdriver
1 EDB exploit
NA
CVE-2007-2749
SQL injection vulnerability in question.php in FAQEngine 4.16.03 and previous versions allows remote malicious users to execute arbitrary SQL commands via the questionref parameter in a display action.
Faqengine Faqengine
1 EDB exploit
NA
CVE-2007-2889
SQL injection vulnerability in tracking/courseLog.php in Dokeos 1.6.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the scormcontopen parameter.
Dokeos Open Source Learning And Knowledge Management Tool 1.5
Dokeos Open Source Learning And Knowledge Management Tool 1.6 Rc2
Dokeos Open Source Learning And Knowledge Management Tool 1.5.3
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5.5
Dokeos Open Source Learning And Knowledge Management Tool 1.5.4
Dokeos Open Source Learning And Knowledge Management Tool 1.6.5
Dokeos Open Source Learning And Knowledge Management Tool 1.4
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4 P1
1 EDB exploit
NA
CVE-2007-3082
Directory traversal vulnerability in sendcard.php in Sendcard 3.4.1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the sc_language parameter.
Sendcard Sendcard
1 EDB exploit
NA
CVE-2007-4781
administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is th...
Joomla Joomla 1.5.0 Rc1
Joomla Joomla 1.5.0 Beta2
Joomla Joomla 1.5.0 Beta1
1 EDB exploit
NA
CVE-2007-3312
Directory traversal vulnerability in admin/plugin_manager.php in Jasmine CMS 1.0 allows remote authenticated administrators to include and execute arbitrary local files a .. (dot dot) in the u parameter. NOTE: a separate vulnerability could be leveraged to make this issue exploit...
Efstratios Geroulis Jasmine Cms 1.0
1 EDB exploit
NA
CVE-2007-3313
Multiple SQL injection vulnerabilities in Jasmine CMS 1.0 allow remote malicious users to execute arbitrary SQL commands via (1) the login_username parameter to login.php or (2) the item parameter to news.php.
Efstratios Geroulis Jasmine Cms 1.0
1 EDB exploit
NA
CVE-2008-0358
SQL injection vulnerability in index.php in Pixelpost 1.7 allows remote malicious users to execute arbitrary SQL commands via the parent_id parameter.
Pixelpost Pixelpost 1.7
1 EDB exploit
NA
CVE-2007-2985
Pheap 2.0 allows remote malicious users to bypass authentication by setting a pheap_login cookie value to the administrator's username, which can be used to (1) obtain sensitive information, including the administrator password, via settings.php or (2) upload and execute arb...
Pheap Pheap 2.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »