Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
smok3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-4603
Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote malicious users to execute arbitrary SQL commands via (1) the aid parameter in a showarticle action or (2) the catid parameter in a showcat action.
Altercoder Acg News 1.0
2 EDB exploits
4.3
CVSSv2
CVE-2005-1130
Cross-site scripting (XSS) vulnerability in index.php in Pinnacle Cart allows remote malicious users to inject arbitrary web script or HTML via the pg parameter.
Desert Dog Software Pinnacle Cart
1 EDB exploit
7.5
CVSSv2
CVE-2007-4628
SQL injection vulnerability in shownews.php in phpns 1.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Phpns Phpns 1.1
1 EDB exploit
7.5
CVSSv2
CVE-2007-4552
SQL injection vulnerability in index.php in Agares Media Arcadem 2.01 allows remote malicious users to execute arbitrary SQL commands via the blockpage parameter. NOTE: as of 20070827, the vendor has made conflicting statements regarding whether this issue exists or not.
Agares Media Arcadem 2.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2005-3043
SQL injection vulnerability in AddItem.asp in Mall23 eCommerce allows remote malicious users to execute arbitrary SQL commands via the idOption_Dropdown_2 parameter.
Mall23 Mall23
1 EDB exploit
7.5
CVSSv2
CVE-2007-4762
Multiple SQL injection vulnerabilities in embadmin/login.asp in E-SMARTCART 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) user and (2) pass fields, different vectors than CVE-2007-0092.
E-smart Cart E-smart Cart 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-2289
Cross-site scripting (XSS) vulnerability in index.php in Arcade Trade Script 1.0 beta allows remote malicious users to inject arbitrary web script or HTML via the q parameter in a gamelist action.
Arcadetradescript Arcade Trade Script 1.0 Beta
1 EDB exploit
7.5
CVSSv2
CVE-2007-4551
PHP remote file inclusion vulnerability in index.php in Agares Media Arcadem 2.01 allows remote malicious users to execute arbitrary PHP code via a URL in the loadpage parameter.
Agares Media Arcadem 2.0.1
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started