Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
subj vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2010-1075
SQL injection vulnerability in index.php in Entry Level CMS (EL CMS) allows remote malicious users to execute arbitrary SQL commands via the subj parameter.
Entrylevelcms El Cms
383
VMScore
CVE-2010-1076
Cross-site scripting (XSS) vulnerability in index.php in Entry Level CMS (EL CMS) allows remote malicious users to inject arbitrary web script or HTML via the subj parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is ...
Entrylevelcms El Cms
755
VMScore
CVE-2009-2929
Multiple SQL injection vulnerabilities in TGS Content Management 0.x allow remote malicious users to execute arbitrary SQL commands via the (1) tgs_language_id, (2) tpl_dir, (3) referer, (4) user-agent, (5) site, (6) option, (7) db_optimization, (8) owner, (9) admin_email, (10) d...
Tgs-cms Tgs Content Management 0.3.2
Tgs-cms Tgs Content Management 0.1.6
Tgs-cms Tgs Content Management 0.2.5
Tgs-cms Tgs Content Management 0.2.0
Tgs-cms Tgs Content Management 0.1.7
Tgs-cms Tgs Content Management 0.3.0
1 EDB exploit
505
VMScore
CVE-2003-1181
Advanced Poll 2.0.2 allows remote malicious users to obtain sensitive information via an HTTP request to info.php, which invokes the phpinfo() function.
Advanced Poll Advanced Poll 2.0.2
1 EDB exploit
505
VMScore
CVE-2003-1540
WF-Chat 1.0 Beta stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain authentication information via a direct request to (1) !pwds.txt and (2) !nicks.txt.
Wfchat Wfchat 1.0
1 EDB exploit
505
VMScore
CVE-2003-1541
PlanetMoon Guestbook tr3.a stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the admin script password, and other passwords, via a direct request to files/passwd.txt.
Planetmoon Guestbook Tr3.a.1
1 EDB exploit
515
VMScore
CVE-2002-1522
Buffer overflow in PowerFTP FTP server 2.24, and possibly other versions, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long USER argument.
Cooolsoft Powerftp 2.10
Cooolsoft Powerftp 2.23
Cooolsoft Powerftp 2.24
Cooolsoft Powerftp 2.03
3 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started