VYPR
Vendor

Dmxready

Products
11
CVEs
17
Across products
17
Status
Private

Products

11

Recent CVEs

17
  • CVE-2025-14632MedJan 17, 2026
    risk 0.29cvss 4.4epss 0.00

    The Filr – Secure document library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via unrestricted file upload in all versions up to, and including, 1.2.11 due to insufficient file type restrictions in the FILR_Uploader class. This makes it possible for…

  • CVE-2010-4921Oct 8, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in inc_pollingboothmanager.asp in DMXReady Polling Booth Manager allows remote attackers to execute arbitrary SQL commands via the QuestionID parameter in a results action.

  • CVE-2010-2342Jun 21, 2010
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in onlinenotebookmanager.asp in DMXReady Online Notebook Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.

  • CVE-2009-2238Jun 27, 2009
    risk 0.03cvss epss 0.04

    Unrestricted file upload vulnerability in includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp in DMXReady Registration Manager 1.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct…

  • CVE-2009-1821May 29, 2009
    risk 0.03cvss epss 0.03

    DMXReady Registration Manager 1.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for databases/webblogmanager.mdb.

  • CVE-2009-0428Feb 5, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Secure Document Library 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.

  • CVE-2009-0427Feb 5, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Member Directory Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.

  • CVE-2009-0426Feb 5, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.

  • CVE-2009-0339Jan 29, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to execute arbitrary SQL commands via the itemID parameter in a view action.

  • CVE-2009-0338Jan 29, 2009
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to inject arbitrary web script or HTML via the CategoryID parameter in a refer action.

  • CVE-2006-7118Mar 6, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.asp in DMXReady Site Engine Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the mid parameter.

  • CVE-2006-6816Dec 29, 2006
    risk 0.03cvss epss 0.04

    Multiple SQL injection vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) set_preferences.asp, (2) send_password_preferences.asp, and (3) SecureLoginManager/list.asp in the Local-Admin…

  • CVE-2006-2947Jun 12, 2006
    risk 0.03cvss epss 0.03

    Dmx Forum 2.1a allows remote attackers to obtain username and password information via a direct request to pops/edit.php with a modified membre parameter.

  • CVE-2009-0454Feb 10, 2009
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in DMXReady Online Notebook Manager 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field. NOTE: some third parties report inability to verify this issue.

  • CVE-2006-6815Dec 29, 2006
    risk 0.00cvss epss 0.01

    Multiple cross-site scripting (XSS) vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote authenticated administrators to inject arbitrary web script or HTML via unspecified parameters to (1) set_preferences.asp, (2) send_password_preferences.asp, and (3)…

  • CVE-2004-2189Dec 31, 2004
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in DMXReady Site Chassis Manager allows remote attackers to execute arbitrary SQL commands via unknown vectors.

  • CVE-2004-2188Dec 31, 2004
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in DMXReady Site Chassis Manager allows remote attackers to inject arbitrary web script or HTML via unknown vectors.