Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x0r vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2009-0750
SQL injection vulnerability in login.php in the smNews example script for txtSQL 2.2 Final allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Tombstone Smnews -
1 EDB exploit
755
VMScore
CVE-2009-0864
S-Cms 1.1 Stable allows remote malicious users to bypass authentication and obtain administrative access via an OK value for the login cookie.
Matteoiammarrone S-cms 1.1
1 EDB exploit
755
VMScore
CVE-2009-0863
SQL injection vulnerability in admin/delete_page.php in S-Cms 1.1 Stable allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Matteoiammarrone S-cms 1.1
1 EDB exploit
505
VMScore
CVE-2009-0866
pHNews Alpha 1 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for extra/genbackup.php.
Phnews Phnews 1
1 EDB exploit
755
VMScore
CVE-2008-4752
TlNews 2.2 allows remote malicious users to bypass authentication and gain administrative access by setting the tlNews_login cookie to admin.
Tech Logic Tlnews 2.2
1 EDB exploit
755
VMScore
CVE-2008-4781
Directory traversal vulnerability in update.php in MyKtools 2.4 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the langage parameter.
Easy-script Myktools 2.4
1 EDB exploit
755
VMScore
CVE-2009-4807
Multiple SQL injection vulnerabilities in Graugon PHP Article Publisher 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) c parameter to index.php and the (2) id parameter to view.php.
Graugon Php Article Publisher 1.0
1 EDB exploit
755
VMScore
CVE-2008-4783
tlAds 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the tlAds_login cookie to "admin."
Easy-script Tlads 1.0
1 EDB exploit
755
VMScore
CVE-2008-5065
TlGuestBook 1.2 allows remote malicious users to bypass authentication and gain administrative access by setting the tlGuestBook_login cookie to admin.
Easy-script Tlguesbook 1.2
1 EDB exploit
755
VMScore
CVE-2009-0739
SQL injection vulnerability in login.php in MyNews 0.10 allows remote malicious users to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
Frankmancuso Mynews 0.10
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »