Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
indoushka vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1913
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-0754. Reason: This candidate is a reservation duplicate of CVE-2010-0754. Notes: All CVE users should reference CVE-2010-0754 instead of this candidate. All references and descriptions in this candidate have ...
1 EDB exploit
NA
CVE-2004-1975
Cross-site scripting (XSS) vulnerability in the category module in pafiledb.php for paFileDB 3.1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter, a vulnerability that is closely related to CVE-2004-1551.
Php Arena Pafiledb 3.0
Php Arena Pafiledb 3.0 Beta 3.1
Php Arena Pafiledb 3.1
1 EDB exploit
NA
CVE-2009-4678
Cross-site scripting (XSS) vulnerability in index.php in Winn Guestbook 2.4 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Winn Winn Guestbook 2.4
1 EDB exploit
NA
CVE-2010-1740
SQL injection vulnerability in newsletter.php in GuppY 4.5.18 allows remote malicious users to execute arbitrary SQL commands via the lng parameter.
Freeguppy Guppy 4.5.18
1 EDB exploit
NA
CVE-2009-4451
Unrestricted file upload vulnerability in upper.php in kandalf upper 0.1 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in fileup/.
Php.html Kandalf Upper 0.1
1 EDB exploit
NA
CVE-2010-0365
Cross-site scripting (XSS) vulnerability in search.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allows remote malicious users to inject arbitrary web script or HTML via the order parameter.
Bitscripts Bits Video Script 2.04
Bitscripts Bits Video Script 2.05
1 EDB exploit
NA
CVE-2010-0371
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Hitmaaan Gallery 1.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) gall and (2) levela parameters.
Hitmaaan Hitmaaan Gallery 1.3
1 EDB exploit
NA
CVE-2010-0756
Session fixation vulnerability in WikyBlog 1.7.3 rc2 allows remote malicious users to hijack web sessions by setting the jsessionid parameter to (1) index.php/Comment/Main, (2) index.php/Comment/Main/Home_Wiky, or (3) index.php/Edit/Main.
Wikyblog Wikyblog 1.7.3
1 EDB exploit
NA
CVE-2010-1065
Lebisoft Ziyaretci Defteri 7.4 and 7.5 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for db/lebisoft.mdb.
Lebisoft Ziyaretci Defteri 7.4
Lebisoft Ziyaretci Defteri 7.5
1 EDB exploit
NA
CVE-2009-4446
Cross-site scripting (XSS) vulnerability in admin.php in phpInstantGallery 1.1 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Ikemcg Phpinstantgallery 1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »