Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
staker vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2008-4483
Directory traversal vulnerability in index.php in Crux Gallery 1.32 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Crux Software Gallery 1.32
Crux Software Gallery
Crux Software Gallery 1.2
Crux Software Gallery 1.0
Crux Software Gallery 1.31
Crux Software Gallery 1.1
Crux Software Gallery 1.30
1 EDB exploit
755
VMScore
CVE-2008-4523
SQL injection vulnerability in login.php in IP Reg 0.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Ip Reg Ip Reg 0.1
Ip Reg Ip Reg 0.3
Ip Reg Ip Reg
Ip Reg Ip Reg 0.2
1 EDB exploit
755
VMScore
CVE-2008-3031
Directory traversal vulnerability in index.php in Simple PHP Agenda 2.2.4 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Simple Php Agenda Simple Php Agenda
Simple Php Agenda Simple Php Agenda 2.2.0
Simple Php Agenda Simple Php Agenda 2.0.0
Simple Php Agenda Simple Php Agenda 2.2.1
Simple Php Agenda Simple Php Agenda 2.2.2
Simple Php Agenda Simple Php Agenda 2.2.3
Simple Php Agenda Simple Php Agenda 2.1.0
1 EDB exploit
505
VMScore
CVE-2008-3205
Directory traversal vulnerability in index.php in Easy-Script Wysi Wiki Wyg 1.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the c parameter.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
785
VMScore
CVE-2008-5322
Wysi Wiki Wyg 1.0 allows remote malicious users to obtain system information via an invalid categup parameter to index.php, which calls the phpinfo function.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
435
VMScore
CVE-2008-5323
Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg 1.0 allows remote malicious users to inject arbitrary web script or HTML via the s parameter.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
755
VMScore
CVE-2008-5491
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the pageID parameter.
Slimcms Slimcms
1 EDB exploit
685
VMScore
CVE-2008-4701
SQL injection vulnerability in admin.php in Libera CMS 1.12, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the libera_staff_user cookie parameter, a different vector than CVE-2008-4700. NOTE: the provenance of this informat...
Liberiacms Liberia Cms 1.00
Liberiacms Liberia Cms 1.10
Liberiacms Liberia Cms 1.11
Liberiacms Liberia Cms
1 EDB exploit
755
VMScore
CVE-2008-4345
SQL injection vulnerability in download.php in WebPortal CMS 0.7.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the aid parameter.
Webportal Webportal Cms 0.7.3
Webportal Webportal Cms
Webportal Webportal Cms 0.6.0
Webportal Webportal Cms 0.6 Beta
1 EDB exploit
755
VMScore
CVE-2008-4524
SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Adaptcms Adaptcms 1.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »