Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
the tiger vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2007-1778
PHP remote file inclusion vulnerability in db/mysql.php in the Eve-Nuke 0.1 (EN-Forums) module for PHP-Nuke allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Eve-nuke Eve-nuke Forum 0.1
1 EDB exploit
765
VMScore
CVE-2008-6409
SQL injection vulnerability in index.php in ol'bookmarks manager 0.7.5 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a brain action.
Brian Wilson Ol\\'bookmarks 0.7.5
3 EDB exploits
760
VMScore
CVE-2007-2817
SQL injection vulnerability in read/index.php in ol'bookmarks 0.7.4 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ol Bookmarks Ol Bookmarks 0.7.4
2 EDB exploits
760
VMScore
CVE-2007-2816
Multiple PHP remote file inclusion vulnerabilities in ol'bookmarks 0.7.4 allow remote malicious users to execute arbitrary PHP code via a URL in the root parameter to (1) test1.php, (2) blackorange.php, (3) default.php, (4) frames1.php, (5) frames1_top.php, (7) test2.php, (8...
Ol Bookmarks Ol Bookmarks 0.7.4
2 EDB exploits
755
VMScore
CVE-2009-2604
Multiple SQL injection vulnerabilities in adminlogin.asp in Zen Help Desk 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) userid (aka username) and (2) PassWord parameters to admin.asp.
Zenhelpdesk Zen Help Desk 2.1
1 EDB exploit
755
VMScore
CVE-2009-2233
The admin interface in AWScripts.com Gallery Search Engine 1.5 allows remote malicious users to bypass authentication and gain administrative access by setting the awse_logged cookie to 1.
Awscripts Gallery Search Engine 1.5
1 EDB exploit
755
VMScore
CVE-2009-1662
Multiple SQL injection vulnerabilities in admin/login.php in Wright Way Services Recipe Script 5 allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) Password fields, as reachable from admin/index.php.
Recipescript Recipe Script 5
1 EDB exploit
755
VMScore
CVE-2009-1651
SQL injection vulnerability in admin/member_details.php in 2daybiz Business Community Script allows remote malicious users to execute arbitrary SQL commands via the mid parameter.
2daybiz Business Community Script
1 EDB exploit
755
VMScore
CVE-2009-1638
Techno Dreams Job Career Package 3.0 allows remote malicious users to bypass authentication and obtain administrative access by setting the JobCareerAdmin cookie to Login.
T-dreams Job Career Package 3.0
1 EDB exploit
755
VMScore
CVE-2009-1610
admin/changepassword.php in Job Script Job Board Software 2.0 allows remote malicious users to change the administrator password and gain administrator privileges via a direct request.
Jobscript Job Script Job Board Software 2.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »