Vulmon
Recent Vulnerabilities
Discussions
Trends
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
indoushka vulnerabilities and exploits
7.5
CVSSv2
CVE-2010-1741
SQL injection vulnerability in request_account.php in Billwerx RC 5.2.2 PL2 allows remote attackers to execute arbitrary SQL commands via the primary_number parameter....
Billwerx
Billwerx Rc
1 EDB exploit available
4.3
CVSSv2
CVE-2009-4678
Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO....
Winn
Winn Guestbook
1 EDB exploit available
4.3
CVSSv2
CVE-2010-0941
Multiple cross-site scripting (XSS) vulnerabilities in eTek Systems Hit Counter 2.0 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php, (2) inc/login.php, (3) admin/index.php, and (4) admin/forgot.php....
Web-site-development
Etek Systems Hit Counter
6.8
CVSSv2
CVE-2010-0366
Multiple unrestricted file upload vulnerabilities in (1) register.php and (2) addvideo.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allow remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct...
Bitscripts
Bits Video Script
2 EDB exploits available
6.8
CVSSv2
CVE-2009-4451
Unrestricted file upload vulnerability in upper.php in kandalf upper 0.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in fileup/....
Php.html
Kandalf Upper
1 EDB exploit available
4.3
CVSSv2
CVE-2010-0725
Cross-site scripting (XSS) vulnerability in showimg.php in Arab Cart 1.0.2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter....
Mhd Zaher Ghaibeh
Arab Cart
1 EDB exploit available
7.5
CVSSv2
CVE-2010-0724
SQL injection vulnerability in showimg.php in Arab Cart 1.0.2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter....
Mhd Zaher Ghaibeh
Arab Cart
1 EDB exploit available
4.3
CVSSv2
CVE-2010-0371
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Hitmaaan Gallery 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) gall and (2) levela parameters....
Hitmaaan
Hitmaaan Gallery
1 EDB exploit available
7.5
CVSSv2
CVE-2010-1106
PHP remote file inclusion vulnerability in cgi/index.php in AdvertisementManager 3.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the req parameter. NOTE: this can also be leveraged to include and execute arbitrary local files via .. (dot dot) sequences....
Advertisementmanager
1 EDB exploit available
4.3
CVSSv2
CVE-2009-4469
Multiple cross-site scripting (XSS) vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, the (2) archiv parameter, and the (3) subcat parameter....
Giombetti
Phppowercards
1 EDB exploit available
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2019-16024
CVE-2019-19781
CVE-2020-0609
CVE-2019-5146
validation
CSRF
XPath injection
CVE-2019-20423
CVE-2019-20430
1
2
3
4
5
NEXT »
Vulmon