Armis Vulnerability Intelligence Database

By combining AI with human insight, Armis Vulnerability Intelligence Database offers extended coverage for vulnerabilities that matter to you, your industry, and provides you with clear remediation instructions.

CVE Name	Severity Score	Published Date	CISA KEV

Take These Insights to the Next Level

Armis now offers direct API access to Armis Vulnerability Intelligence Database through the AWS Marketplace, transforming it from a powerful research tool into an integrated component of your proactive security posture.

Seamless Integration: Directly feed Armis's contextual data into your existing stack.
Automated Workflows: Automate vulnerability lookups in real-time.
Custom Solutions: Use the raw data to build custom dashboards, reports, alerts.

GET THE API

Perspectives, Insights, and News

This Year Vulnerability Management Moves from the Basement to the C-suite

The evolution of cybersecurity practices are reshaping how organizations tackle vulnerabilities.

READ BLOG→

Closing the Loop

Making security everyone's business with prioritization and collaboration.

READ CASE STUDY→

The State of Cyberwarfare

The state of Cyberwarfare

LEARN MORE→

March 2009 CVEs

518 vulnerabilities published in March 2009.

CVE-2008-6358High 7.5
SQL injection vulnerability in group_index.php of Social Groupie allows remote attackers to execute arbitrary SQL commands via the id parameter (CVE-2008-6358).
CVE-2008-6360Medium 4.3
Cross-site scripting (XSS) vulnerability in ImpressCMS 1.0.2 final, specifically in the userranks feature (modules/system/admin.php), allows remote attackers to inject arbitrary web script or HTML via…
CVE-2008-6357Medium 5.0
Information disclosure vulnerability in MyCal Personal Events Calendar due to insufficient access controls, allowing remote attackers to download the mycal.mdb database via a direct HTTP request.
CVE-2008-6349High 7.5
SQL injection vulnerability in survey_results_text.php in TurnkeyForms Business Survey Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-6350High 7.5
SQL injection vulnerability in listtest.php of TurnkeyForms Local Classifieds allows remote attackers to execute arbitrary SQL commands via the r parameter.
CVE-2008-6353High 7.5
SQL injection vulnerability in ASP-CMS 1.0’s index.asp allows remote attackers to execute arbitrary SQL commands via the cha parameter.
CVE-2008-6365High 7.5
SQL injection vulnerability in Ad Server Solutions Ad Management Software Java logon.jsp allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters on l…
CVE-2008-6356Medium 5.0
CVE-2008-6356 describes an information-disclosure vulnerability in EvCal Events Calendar where sensitive data is stored under the web root with insufficient access control, allowing remote attackers t…
CVE-2008-6352High 7.5
SQL injection vulnerability in Xpoze Pro 4.10's home.html via the menu parameter, allowing remote attackers to execute arbitrary SQL commands.
CVE-2008-6351Medium 4.3
Cross-site scripting (XSS) vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote attackers to inject arbitrary web script or HTML via the r parameter.
CVE-2008-6366High 7.5
SQL injection vulnerability in logon.jsp of Ad Server Solutions Affiliate Software Java 4.0 allows remote attackers to execute arbitrary SQL commands via the username and password fields (potentially …
CVE-2008-6348High 7.5
Multiple SQL injection vulnerabilities in DevelopItEasy Photo Gallery 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to gallery_category.php, (2) photo_id pa…
CVE-2008-6355Medium 5.0
CVE-2008-6355: The Net Guys ASPired2Protect stores sensitive information under the web root with insufficient access control, allowing remote attackers to download a database containing usernames and …
CVE-2008-6359Medium 4.3
Cross-site scripting (XSS) vulnerability in Max's Guestbook index.php allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) email, and (3) message parameters.
CVE-2008-6362High 7.5
SQL injection vulnerability in sitepage.php in Multiple Membership Script 2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-6347High 7.5
PHP remote file inclusion vulnerability in the Onguma Time Sheet (com_ongumatimesheet20) Joomla! component (Onguma Time Sheet 2.0 4b) that allows remote attackers to execute arbitrary PHP code via a U…
CVE-2008-6364High 7.5
SQL injection vulnerability in logon_process.jsp in Ad Server Solutions Banner Exchange Solution Java allows remote attackers to execute arbitrary SQL commands via the (1) username (uname parameter) a…
CVE-2008-6354Medium 5.0
The Net Guys ASPired2poll stores sensitive information under the web root with insufficient access control, allowing remote attackers to download a database containing usernames and passwords via a di…