Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validation vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0240
Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote malicious users to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.
8pixel.net Simple Blog
1 EDB exploit
NA
CVE-2006-0345
Multiple SQL injection vulnerabilities in SaralBlog 1.0 allow remote malicious users to execute arbitrary SQL commands via the search parameter to search.php. NOTE: the id/viewprofile.php issue is already covered by CVE-2005-4058.
Saral Kaushik Saralblog 1.0
1 EDB exploit
NA
CVE-2010-0614
SQL injection vulnerability in ajax.php in evalSMSI 2.1.03 allows remote malicious users to execute arbitrary SQL commands via the query parameter in the (1) question action, and possibly the (2) sub_par or (3) num_quest actions.
Myshell Evalsmsi 2.1.03
1 EDB exploit
NA
CVE-2007-0759
Multiple SQL injection vulnerabilities in EasyMoblog 0.5.1 allow remote malicious users to execute arbitrary SQL commands via the (1) i or (2) post_id parameter to add_comment.php, which triggers an injection in libraries.inc.php; or (3) the i parameter to list_comments.php, whic...
Umberto Caldera Easymoblog 0.5.1
1 EDB exploit
NA
CVE-2009-3803
Multiple cross-site scripting (XSS) vulnerabilities in Amiro.CMS 5.4.0.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the status_message parameter to (1) /news, (2) /comment, (3) /forum, (4) /blog, and (5) /tags; the status_message...
Amirocms Amiro.cms
Amirocms Amiro.cms 5.2.3
Amirocms Amiro.cms 4.2.2.0
Amirocms Amiro.cms 4.2.1.0
Amirocms Amiro.cms 5.0.7
Amirocms Amiro.cms 4.2.5
Amirocms Amiro.cms 4.2.4
Amirocms Amiro.cms 4.2.3.0
Amirocms Amiro.cms 5.2.2
Amirocms Amiro.cms 5.2
Amirocms Amiro.cms 4.2.0.5
Amirocms Amiro.cms 4.0.8.0
1 EDB exploit
NA
CVE-2007-3354
Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition allow remote malicious users to execute arbitrary SQL commands via the s_user_id parameter to ViewCat.php and other unspecified vectors. NOTE: the CatID/ViewCat.php, CatID/gallery.php, and ItemNum/ViewItem.p...
Scriptdevelopers.net Netclassifieds 1.9.6.3
Scriptdevelopers.net Netclassifieds 1.0.1
Scriptdevelopers.net Netclassifieds 1.5.1
1 EDB exploit
NA
CVE-2006-5943
Multiple SQL injection vulnerabilities in inventory/display/imager.asp in Website Designs for Less Inventory Manager allow remote malicious users to execute arbitrary SQL commands via the (1) pictable, (2) picfield, or (3) where parameter.
Website Designs For Less Inventory Manager
1 EDB exploit
NA
CVE-2005-4622
Directory traversal vulnerability in eFileGo 3.01 allows remote malicious users to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... (triple dot) in (1) the URL on port 608 and (2) the argument to upload.exe.
Efilego Efilego 3.0.1
1 EDB exploit
NA
CVE-2006-2699
Cross-site scripting (XSS) vulnerability in getimage.php in Geeklog 1.4.0sr2 and previous versions allows remote malicious users to inject arbitrary HTML or web script via the image argument in a show action.
Geeklog Geeklog 1.3.10 Rc3
Geeklog Geeklog 1.3.11
Geeklog Geeklog 1.3.5 Sr1
Geeklog Geeklog 1.3.6
Geeklog Geeklog 1.3.8
Geeklog Geeklog 1.3.8 1
Geeklog Geeklog 1.3.8 1 Sr1
Geeklog Geeklog 1.3.9 Rc1
Geeklog Geeklog 1.3.9 Rc2
Geeklog Geeklog 1.4.0
Geeklog Geeklog 1.4.0 Beta1
Geeklog Geeklog 1.3.10 Rc1
Geeklog Geeklog 1.3.10 Rc2
Geeklog Geeklog 1.3.11 Sr4
Geeklog Geeklog 1.3.5
Geeklog Geeklog 1.3.7 Sr4
Geeklog Geeklog 1.3.7 Sr5
Geeklog Geeklog 1.3.8 1 Sr6
Geeklog Geeklog 1.3.9
Geeklog Geeklog 1.3.9 Sr4
Geeklog Geeklog 1.35
Geeklog Geeklog 1.3.11 Rc1
1 EDB exploit
NA
CVE-2006-1916
Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies parameters.
Dbbs Dbbs 2.0
Dbbs Dbbs
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »