Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sirgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2127
Cross-site scripting (XSS) vulnerability in show_activity.php in Elvin 1.2.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Elvinbts Elvinbts 1.2.0
1 EDB exploit
NA
CVE-2009-2153
Cross-site scripting (XSS) vulnerability in index.php in Impleo Music Collection 2.0 allows remote malicious users to inject arbitrary web script or HTML via the sort parameter.
Sappy.dk Impleo Music Collection 2.0
1 EDB exploit
NA
CVE-2009-2735
SQL injection vulnerability in admin.php in sun-jester OpenNews 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Sun-jester Opennews 1.0
1 EDB exploit
NA
CVE-2009-1519
Directory traversal vulnerability in index.php in Pecio CMS 1.1.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the language parameter.
Pecio-cms Pecio Cms 1.1.5
1 EDB exploit
NA
CVE-2009-1550
Zakkis Technology ABC Advertise 1.0 does not properly restrict access to admin.inc.php, which allows remote malicious users to obtain the administrator login name and password via a direct request.
Zakkis Abc Advertise 1.0
1 EDB exploit
NA
CVE-2009-1607
Cross-site scripting (XSS) vulnerability in the administrator panel in phpForm.net LinkBase 2.0 allows remote malicious users to inject arbitrary web script or HTML via the username in a registration, which is not properly handled when the administrator accesses the Users menu.
Linkbase Linkbase 2.0
1 EDB exploit
NA
CVE-2008-6010
Multiple directory traversal vulnerabilities in SG Real Estate Portal 2.0 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) mod, (2) page, or (3) lang parameter to index.php; or the (4) action or (5) folder parameter in a security request to admin...
Sg Real Estate Portal Sg Real Estate Portal 2.0
1 EDB exploit
NA
CVE-2008-6162
Bux.to Clone script allows remote malicious users to bypass authentication and gain administrative access by setting the loggedin cookie to 1 and the usNick cookie to admin.
Bux Bux.to Clone Script -
1 EDB exploit
NA
CVE-2009-3148
Multiple SQL injection vulnerabilities in PortalXP Teacher Edition 1.2 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) calendar.php, (2) news.php, and (3) links.php; and the (4) assignment_id parameter to assignments.php.
Portalxp Portalxp 1.2
1 EDB exploit
NA
CVE-2009-3158
admin/files.php in simplePHPWeb 0.2 does not require authentication, which allows remote malicious users to perform unspecified administrative actions via unknown vectors. NOTE: some of these details are obtained from third party information.
Carsten Wulff Simplephpweb 0.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »