Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zinho vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1308
SqWebMail allows remote malicious users to inject arbitrary web script or HTML via CRLF sequences in the redirect parameter followed by the desired script or HTML.
Inter7 Sqwebmail 4.0.4 2004-05-24
Inter7 Sqwebmail 4.0.5
Inter7 Sqwebmail 3.5.2
Inter7 Sqwebmail 3.6.0
Inter7 Sqwebmail 3.4.1
Inter7 Sqwebmail 3.5.0
Inter7 Sqwebmail 3.5.1
Inter7 Sqwebmail 3.5.3
Inter7 Sqwebmail 3.6.1
1 EDB exploit
NA
CVE-2005-1095
Cross-site scripting (XSS) vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Ocean12 Technologies Membership Manager Pro
1 EDB exploit
NA
CVE-2006-0240
Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote malicious users to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.
8pixel.net Simple Blog
1 EDB exploit
NA
CVE-2005-1008
Cross-site scripting (XSS) vulnerability in posts.asp for ASP-DEv XM Forum RC3 allows remote malicious users to inject arbitrary web script or HTML via a "javascript:" URL in an IMG tag.
Asp-dev Xm Forum Rc3
1 EDB exploit
NA
CVE-2005-1011
SQL injection vulnerability in content.asp in SiteEnable allows remote malicious users to execute arbitrary SQL commands via the sortby parameter.
Iatek Siteenable
1 EDB exploit
NA
CVE-2005-2386
Cross-site scripting (XSS) vulnerability in viewCart.asp in CartWIZ 1.20 allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Elemental Software Cartwiz 1.10
Elemental Software Cartwiz 1.20
1 EDB exploit
NA
CVE-2005-1223
Multiple SQL injection vulnerabilities in Ocean12 Calendar manager 1.01 allow remote malicious users to execute arbitrary SQL commands via the Admin_id field.
Ocean12 Technologies Calendar Manager Pro 1.01
1 EDB exploit
NA
CVE-2005-1561
Multiple cross-site scripting (XSS) vulnerabilities in post.asp in MaxWebPortal 1.3.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) mod, (2) M, or (3) type parameter.
Maxwebportal Maxwebportal 1.3.0
Maxwebportal Maxwebportal 1.3.1
Maxwebportal Maxwebportal 1.3.2
Maxwebportal Maxwebportal 1.3.3
Maxwebportal Maxwebportal 1.3.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started