Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sirgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1405
Directory traversal vulnerability in index.php in PastelCMS 0.8.0, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the set_lng parameter.
Pastel Pastelcms 0.8.0
1 EDB exploit
NA
CVE-2009-1550
Zakkis Technology ABC Advertise 1.0 does not properly restrict access to admin.inc.php, which allows remote malicious users to obtain the administrator login name and password via a direct request.
Zakkis Abc Advertise 1.0
1 EDB exploit
NA
CVE-2009-1625
Directory traversal vulnerability in index.php in Thickbox Gallery 2 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the ln parameter.
Davlin Thickbox Gallery 2
1 EDB exploit
NA
CVE-2009-1817
Multiple buffer overflows in DigiMode Maya 1.0.2 allow remote malicious users to execute arbitrary code via a long string in a malformed (1) .m3u or (2) .m3l playlist file.
Digimode10 Maya 1.0.2
1 EDB exploit
NA
CVE-2009-1916
dig.php in GScripts.net DNS Tools allows remote malicious users to execute arbitrary commands via shell metacharacters in the ns parameter.
Gscripts Dns Tools
1 EDB exploit
NA
CVE-2009-2123
Multiple SQL injection vulnerabilities in Elvin 1.2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) inUser (aka Username) and (2) inPass (aka Password) parameters to (a) inc/login.ei, reachable through login.php; and the (3) id parameter to (b) show_b...
Elvinbts Elvinbts 1.2.0
1 EDB exploit
NA
CVE-2009-2124
Directory traversal vulnerability in page.php in Elvin 1.2.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the id parameter.
Elvinbts Elvinbts 1.2.0
1 EDB exploit
NA
CVE-2009-2151
Directory traversal vulnerability in index.php in AdaptWeb 0.9.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the newlang parameter.
Adaptweb Adaptweb 0.9.2
1 EDB exploit
NA
CVE-2009-2152
SQL injection vulnerability in a_index.php in AdaptWeb 0.9.2 allows remote malicious users to execute arbitrary SQL commands via the CodigoDisciplina parameter in a TopicosCadastro1 action.
Isabela Gasparini Adaptweb 0.9.2
1 EDB exploit
NA
CVE-2009-2153
Cross-site scripting (XSS) vulnerability in index.php in Impleo Music Collection 2.0 allows remote malicious users to inject arbitrary web script or HTML via the sort parameter.
Sappy.dk Impleo Music Collection 2.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »