Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arbitrary vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2014-0243
Check_MK up to and including 1.2.5i2p1 allows local users to read arbitrary files via a symlink attack to a file in /var/lib/check_mk_agent/job.
Check Mk Project Check Mk 1.2.5
Check Mk Project Check Mk
7.5
CVSSv3
CVE-2015-4181
Directory traversal vulnerability in get_file.php in phpMyBackupPro 2.1 up to and including 2.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the view parameter. NOTE: the provenance of this information is unknown; the details are obtained solely fro...
Phpmybackuppro Phpmybackuppro 2.2
Phpmybackuppro Phpmybackuppro 2.3
Phpmybackuppro Phpmybackuppro 2.4
Phpmybackuppro Phpmybackuppro 2.1
Phpmybackuppro Phpmybackuppro 2.5
1 EDB exploit
8.8
CVSSv3
CVE-2017-14840
TeamWork TicketPlus allows Arbitrary File Upload in updateProfile.
Teamworktec Ticketplus -
1 EDB exploit
NA
CVE-2005-0691
PHP remote file inclusion vulnerability in article mode for modules.php in SocialMPN allows remote malicious users to execute arbitrary PHP code by modifying the name parameter to reference a URL on a remote web server that contains the code.
Socialmpn Socialmpn 1.2.3
Socialmpn Socialmpn 1.2.4
Socialmpn Socialmpn 1.2.5
Socialmpn Socialmpn 1.2.1
Socialmpn Socialmpn 1.2.2
1 EDB exploit
NA
CVE-2004-1456
filediff in CVStrac allows remote malicious users to execute arbitrary commands via shell metacharacters in rcsinfo.
Cvstrac Cvstrac 1.1.3
Cvstrac Cvstrac 1.1
Cvstrac Cvstrac 1.1.1
Cvstrac Cvstrac 1.1.2
1 EDB exploit
NA
CVE-2005-4423
Unrestricted file upload vulnerability in PHPFM prior to 0.2.3 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension to an accessible directory, as demonstrated using a file with a .php extension, aka "upload phpshell.&q...
1 EDB exploit
NA
CVE-2008-6942
Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System (aka Real Estate Classifieds) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to...
Scriptsfeed Realtor Classifieds System -
3 EDB exploits
NA
CVE-2008-6943
Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/.
Scriptsfeed Recipes Listing Portal
3 EDB exploits
NA
CVE-2008-6944
Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in cars_images/.
Scriptsfeed Auto Classifieds -
3 EDB exploits
NA
CVE-2012-0209
Horde 3.3.12, Horde Groupware 1.2.10, and Horde Groupware Webmail Edition 1.2.10, as distributed by FTP between November 2011 and February 2012, contains an externally introduced modification (Trojan Horse) in templates/javascript/open_calendar.js, which allows remote malicious u...
Horde Groupware 1.2.10
Horde Horde 3.3.12
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »