Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
the:paradox vulnerabilities and exploits
(subscribe to this query)
515
VMScore
CVE-2008-1861
Directory traversal vulnerability in modules/threadstop/threadstop.php in ExBB Italia 0.22 and previous versions, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in th...
Exbb Exbb Italia
1 EDB exploit
685
VMScore
CVE-2008-1862
ExBB Italia 0.22 and previous versions only checks GET requests that use the QUERY_STRING for certain path manipulations, which allows remote malicious users to bypass this check via (1) POST or (2) COOKIE variables, a different vector than CVE-2006-4488. NOTE: this can be levera...
Exbb Exbb Italia
1 EDB exploit
755
VMScore
CVE-2008-1591
The pnVarPrepForStore function in PostNuke 0.764 and previous versions skips input sanitization when magic_quotes_runtime is enabled, which allows remote malicious users to conduct SQL injection attacks and execute arbitrary SQL commands via input associated with server variables...
Postnuke Postnuke
1 EDB exploit
755
VMScore
CVE-2008-0141
actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote malicious users to obtain access to any account via a lostpass action.
Webportal Cms Project Webportal Cms 0.6.0
1 EDB exploit
685
VMScore
CVE-2008-0142
Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote malicious users to execute arbitrary SQL commands via the user_name parameter to actions.php, and unspecified other vectors.
Webportal Webportal Cms 0.6 Beta
1 EDB exploit
755
VMScore
CVE-2008-2778
SQL injection vulnerability in inc/class_search.php in the Search System in RevokeBB 1.0 RC11 allows remote malicious users to execute arbitrary SQL commands via the search parameter.
Revokesoft Revokebb 1.0
1 EDB exploit
685
VMScore
CVE-2008-0099
Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors.
Myphp Forum Myphp Forum
1 EDB exploit
755
VMScore
CVE-2008-0734
SQL injection vulnerability in class_auth.php in Limbo CMS 1.0.4.2, and possibly earlier versions, allows remote malicious users to execute arbitrary SQL commands via the cuid cookie parameter to admin.php.
Limbo Cms Limbo Cms
1 EDB exploit
755
VMScore
CVE-2009-2230
SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) prior to 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter.
Mybulletinboard Mybulletinboard 1.4.3
Mybulletinboard Mybulletinboard 1.2.3
Mybulletinboard Mybulletinboard 1.0
Mybulletinboard Mybulletinboard 1.4.5
Mybulletinboard Mybulletinboard 1.1.8
Mybulletinboard Mybulletinboard 1.2
Mybulletinboard Mybulletinboard
Mybulletinboard Mybulletinboard 1.2.5
Mybulletinboard Mybulletinboard 1.1.6
Mybulletinboard Mybulletinboard 1.1.3
Mybulletinboard Mybulletinboard 1.2.11
Mybulletinboard Mybulletinboard 1.2.10
Mybulletinboard Mybulletinboard 1.4.2
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.1.5
Mybulletinboard Mybulletinboard 1.1
Mybulletinboard Mybulletinboard 1.1.4
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.1.2
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard 1.1.7
1 EDB exploit
755
VMScore
CVE-2008-6741
SQL injection vulnerability in Load.php in Simple Machines Forum (SMF) 1.1.4 and previous versions allows remote malicious users to execute arbitrary SQL commands by setting the db_character_set parameter to a multibyte character set such as big5, which causes the addslashes PHP ...
Simple Machines Simple Machines Forum 1.0.11
Simple Machines Simple Machines Forum 1.1.1
Simple Machines Simple Machines Forum 1.0.7
Simple Machines Simple Machines Forum 1.1
Simple Machines Simple Machines Forum
Simple Machines Simple Machines Forum 1.0.5
Simple Machines Simple Machines Forum 1.1.3
Simple Machines Simple Machines Forum 1.0.6
Simple Machines Simple Machines Forum 1.1.2
Simple Machines Simple Machines Forum 1.0.12
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »