Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zinho vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-1561
Multiple cross-site scripting (XSS) vulnerabilities in post.asp in MaxWebPortal 1.3.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) mod, (2) M, or (3) type parameter.
Maxwebportal Maxwebportal 1.3.0
Maxwebportal Maxwebportal 1.3.1
Maxwebportal Maxwebportal 1.3.2
Maxwebportal Maxwebportal 1.3.3
Maxwebportal Maxwebportal 1.3.5
1 EDB exploit
7.5
CVSSv2
CVE-2005-1223
Multiple SQL injection vulnerabilities in Ocean12 Calendar manager 1.01 allow remote malicious users to execute arbitrary SQL commands via the Admin_id field.
Ocean12 Technologies Calendar Manager Pro 1.01
1 EDB exploit
7.5
CVSSv2
CVE-2006-0240
Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote malicious users to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.
8pixel.net Simple Blog
1 EDB exploit
7.5
CVSSv2
CVE-2005-1308
SqWebMail allows remote malicious users to inject arbitrary web script or HTML via CRLF sequences in the redirect parameter followed by the desired script or HTML.
Inter7 Sqwebmail 4.0.4 2004-05-24
Inter7 Sqwebmail 4.0.5
Inter7 Sqwebmail 3.5.2
Inter7 Sqwebmail 3.6.0
Inter7 Sqwebmail 3.4.1
Inter7 Sqwebmail 3.5.0
Inter7 Sqwebmail 3.5.1
Inter7 Sqwebmail 3.5.3
Inter7 Sqwebmail 3.6.1
1 EDB exploit
4.3
CVSSv2
CVE-2005-2386
Cross-site scripting (XSS) vulnerability in viewCart.asp in CartWIZ 1.20 allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Elemental Software Cartwiz 1.10
Elemental Software Cartwiz 1.20
1 EDB exploit
4.3
CVSSv2
CVE-2005-1008
Cross-site scripting (XSS) vulnerability in posts.asp for ASP-DEv XM Forum RC3 allows remote malicious users to inject arbitrary web script or HTML via a "javascript:" URL in an IMG tag.
Asp-dev Xm Forum Rc3
1 EDB exploit
7.5
CVSSv2
CVE-2005-1011
SQL injection vulnerability in content.asp in SiteEnable allows remote malicious users to execute arbitrary SQL commands via the sortby parameter.
Iatek Siteenable
1 EDB exploit
4.3
CVSSv2
CVE-2005-1095
Cross-site scripting (XSS) vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Ocean12 Technologies Membership Manager Pro
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started