Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2006-1700

Malware in sbrugna...

2.6CVSS6.4AI score0.0053EPSS
Exploits1References6
Cvelist
Cvelistadded 2017/01/04 2:0 a.m.17 views

CVE-2016-10114

SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2.6.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch...

9.9AI score0.00548EPSS
Exploits0References4
CVE
CVEadded 2017/01/04 2:0 a.m.38 views

CVE-2016-10114

CVE-2016-10114 describes a SQL injection vulnerability in the Joomla! extension "aWeb Cart Watching System for Virtuemart" (versions before 2.6.1). The flaw allows remote attackers to execute arbitrary SQL commands via vectors involving categorysearch and smartSearch. Affected product is the aWeb...

9.8CVSS9.8AI score0.00548EPSS
Exploits0References4Affected Software1
Packet Storm
Packet Stormadded 2016/12/29 12:0 a.m.53 views

Joomla aWeb Cart Watching System For Virtuemart 2.6.0 SQL Injection

Exploit Title: Sqli Blind Timebased on Joomla + Viertuemart + aweb-cartwatching-system/aweb-cartwatching = 2.6.0 Date: 28-12-2016 Software Link: http://awebsupport.com/products/aweb-cartwatching-system Exploit Author: Javi Espejoqemm Contact: http://twitter.com/javiespejo Website:...

0.8AI score
Exploits0
Exploit DB
Exploit DBadded 2016/12/28 12:0 a.m.32 views

Joomla! Component aWeb Cart Watching System for Virtuemart 2.6.0 - SQL Injection

Exploit Title: Sqli Blind Timebased on Joomla + Viertuemart + aweb-cartwatching-system/aweb-cartwatching = 2.6.0 Date: 28-12-2016 Software Link: http://awebsupport.com/products/aweb-cartwatching-system Exploit Author: Javi Espejoqemm Contact: http://twitter.com/javiespejo Website:...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2016/12/28 12:0 a.m.16 views

Joomla! Component aWeb Cart Watching System for Virtuemart 2.6.0 - SQL Injection

Joomla! Component aWeb Cart Watching System for Virtuemart 2.6.0 - SQL Injection Exploit Title: Sqli Blind Timebased on Joomla + Viertuemart + aweb-cartwatching-system/aweb-cartwatching = 2.6.0 Date: 28-12-2016 Software Link: http://awebsupport.com/products/aweb-cartwatching-system Exploit Author...

0.8AI score
Exploits0
NVD
NVDadded 2007/03/03 8:19 p.m.9 views

CVE-2007-1247

Multiple PHP remote file inclusion vulnerabilities in aWeb Labs aWebNews 1.5 allow remote attackers to execute arbitrary PHP code via a URL in the pathtonews parameter to 1 listing.php or 2 visview.php...

6.8CVSS7.6AI score0.06225EPSS
Exploits1References9
Cvelist
Cvelistadded 2007/03/03 8:0 p.m.12 views

CVE-2007-1247

Multiple PHP remote file inclusion vulnerabilities in aWeb Labs aWebNews 1.5 allow remote attackers to execute arbitrary PHP code via a URL in the pathtonews parameter to 1 listing.php or 2 visview.php...

7.6AI score0.06225EPSS
Exploits1References9
CVE
CVEadded 2007/03/03 8:0 p.m.40 views

CVE-2007-1247

CVE-2007-1247 (CVE-2007-1247) : Affects aWeb Labs aWebNews 1.5 . The vulnerability consists of multiple PHP remote file inclusion weaknesses that let remote attackers execute arbitrary PHP code by supplying a URL in the path_to_news parameter to either listing.php or visview.php . This is a code ...

6.8CVSS7.6AI score0.06225EPSS
Exploits1References9Affected Software1
securityvulns
securityvulnsadded 2006/04/14 12:0 a.m.40 views

[SA19626] Aweb Scripts Seller Payment Bypass Security Issue

TITLE: Aweb Scripts Seller Payment Bypass Security Issue SECUNIA ADVISORY ID: SA19626 VERIFY ADVISORY: http://secunia.com/advisories/19626/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: Aweb Scripts Seller http://secunia.com/product/9350/ DESCRIPTION: benozor7...

0.1AI score
Exploits0
Prion
Prionadded 2006/04/11 10:2 a.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Aweb Banner Generator 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the banner parameter in view mode...

2.6CVSS6.1AI score0.0053EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2006/04/11 10:2 a.m.11 views

CVE-2006-1699

Cross-site scripting XSS vulnerability in index.php in Aweb Banner Generator 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the banner parameter in view mode...

2.6CVSS5.7AI score0.0053EPSS
Exploits1References5
NVD
NVDadded 2006/04/11 10:2 a.m.10 views

CVE-2006-1700

Buy.php in Aweb Scripts Seller uses predictable cookies for authentication based on the time and the script number, which allows remote attackers to bypass authentication...

7.5CVSS7AI score0.00524EPSS
Exploits0References3
Prion
Prionadded 2006/04/11 10:2 a.m.12 views

Authentication flaw

Buy.php in Aweb Scripts Seller uses predictable cookies for authentication based on the time and the script number, which allows remote attackers to bypass authentication...

7.5CVSS7.5AI score0.00524EPSS
Exploits0References3
Cvelist
Cvelistadded 2006/04/11 10:0 a.m.12 views

CVE-2006-1700

Buy.php in Aweb Scripts Seller uses predictable cookies for authentication based on the time and the script number, which allows remote attackers to bypass authentication...

7AI score0.00524EPSS
Exploits0References3
CVE
CVEadded 2006/04/11 10:0 a.m.37 views

CVE-2006-1700

Summary: CVE-2006-1700 concerns Buy.php in Aweb Scripts Seller, where authentication relies on cookies that are predictable based on the current time and the script number, enabling remote attackers to bypass authentication. What is affected: The Aweb Scripts Seller product’s Buy.php authenticati...

7.5CVSS7AI score0.00524EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2006/04/11 10:0 a.m.14 views

CVE-2006-1699

Cross-site scripting XSS vulnerability in index.php in Aweb Banner Generator 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the banner parameter in view mode...

5.7AI score0.0053EPSS
Exploits1References5
CVE
CVEadded 2006/04/11 10:0 a.m.44 views

CVE-2006-1699

CVE-2006-1699 describes a Cross-site scripting (XSS) vulnerability in index.php of Aweb Banner Generator 3.0 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML via the banner parameter in view mode. According to the NVD entry, the affected software is Aweb Banner...

2.6CVSS5.7AI score0.0053EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2005/05/10 4:0 a.m.41 views

CVE-2004-1991

CVE-2004-1991 affects Aldo’s Web Server (aweb) 1.5. The vulnerability is aDirectory traversal in an HTTP GET request that allows an attacker to view arbitrary files by supplying an improper path using .. (dot dot). The NVD metrics indicate a NETWORK attack vector with low complexity and no authen...

5CVSS7.1AI score0.03154EPSS
Exploits1References6Affected Software1
CVE
CVEadded 2005/05/10 4:0 a.m.43 views

CVE-2004-1990

Aldo's Web Server (aweb) 1.5 is affected by an information-disclosure vulnerability. Remote attackers can cause the server to reveal the full path and the user running the aweb process via an arbitrary character in a malformed request. Root cause is associated with handling of malformed requests ...

5CVSS7.1AI score0.00916EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder