Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sk vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-7402
The SK encar (aka com.encardirect.app) application @7F050000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Encardirect Sk Encar \\@7f050000
NA
CVE-2010-1019
SQL injection vulnerability in the Simple Gallery (sk_simplegallery) extension 0.0.9 and previous versions for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Sk-typo3 Sk Simplegallery 0.0.1
Sk-typo3 Sk Simplegallery
NA
CVE-2010-1020
Cross-site scripting (XSS) vulnerability in the Simple Gallery (sk_simplegallery) extension 0.0.9 and previous versions for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Sk-typo3 Sk Simplegallery
Sk-typo3 Sk Simplegallery 0.0.1
NA
CVE-2008-6476
Cross-site scripting (XSS) vulnerability in blog/search.aspx in BlogEngine.NET allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Dotnetblogengine Blogengine.net
1 EDB exploit
NA
CVE-2007-4078
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft Text Ads Enterprise allow remote malicious users to inject arbitrary web script or HTML via the (1) r parameter to (a) forgot_uid.php, the (2) query or (3) sk parameter to (b) search_results.php, or (4) the pageId ...
Alstrasoft Text Ads Enterprise 2.1
NA
CVE-2006-7170
Multiple SQL injection vulnerabilities in Koan Software Mega Mall allow remote malicious users to execute arbitrary SQL commands via the (1) t, (2) productId, (3) sk, (4) x, or (5) so parameter to (a) product_review.php; or the (6) orderNo parameter to (b) order-track.php.
Koan Software Mega Mall
2 EDB exploits
NA
CVE-2006-1661
Multiple cross-site scripting (XSS) vulnerabilities in SKForum 1.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) areaID parameter in area.View.action, (2) time parameter in planning.View.action, and (3) userID parameter in u...
Sk Soft Skforum
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5