Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
softbiz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3938
SQL injection vulnerability in Softbiz FAQ Script 1.1 and earler allows remote malicious users to execute arbitrary SQL commands via the id parameter in (1) index.php, (2) faq_qanda.php, (3) refer_friend.php, (4) print_article.php, or (5) add_comment.php.
Softbiz Faq
5 EDB exploits
NA
CVE-2006-1659
Multiple SQL injection vulnerabilities in Softbiz Image Gallery allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in image_desc.php, (2) provided parameter in template.php, (3) cid parameter in suggest_image.php, (4) img_id parameter in inser...
Softbiz Image Gallery
5 EDB exploits
NA
CVE-2006-1660
Cross-site scripting (XSS) vulnerability in image_desc.php in Softbiz Image Gallery allows remote malicious users to inject arbitrary web script or HTML via msg parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Softbiz Image Gallery
NA
CVE-2008-3511
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Image Gallery (Photo Gallery) allow remote malicious users to inject arbitrary web script or HTML via the (1) latest parameter to (a) index.php, (b) images.php, (c) suggest_image.php, and (d) image_desc.php; and the (...
Softbiz Image Gallery
9 EDB exploits
NA
CVE-2009-2790
SQL injection vulnerability in cat_products.php in SoftBiz Dating Script allows remote malicious users to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4.
Softbiz Dating Script
1 EDB exploit
NA
CVE-2007-6124
Cross-site scripting (XSS) vulnerability in signin.php in Softbiz Freelancers Script 1 allows remote malicious users to inject arbitrary web script or HTML via the errmsg parameter.
Softbiz Freelancers Script 1.0
1 EDB exploit
NA
CVE-2007-6125
SQL injection vulnerability in search_form.php in Softbiz Freelancers Script 1 allows remote malicious users to execute arbitrary SQL commands via the sb_protype parameter.
Softbiz Freelancers Script 1.0
1 EDB exploit
NA
CVE-2007-5999
SQL injection vulnerability in product_desc.php in Softbiz Auctions Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Softbizscripts Softbiz Auctions Script
1 EDB exploit
NA
CVE-2007-5449
SQL injection vulnerability in searchresult.php in Softbiz Recipes Portal Script allows remote malicious users to execute arbitrary SQL commands via the sbcat_id parameter.
Softbiz Recipes Portal Script
1 EDB exploit
NA
CVE-2006-3271
Multiple SQL injection vulnerabilities in Softbiz Dating 1.0 allow remote malicious users to execute SQL commands via the (1) country and (2) sort_by parameters in (a) search_results.php; (3) browse parameter in (b) featured_photos.php; (4) cid parameter in (c) products.php, (d) ...
Softbiz Dating Script 1.0
5 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »