Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
3l3ctric-cracker vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-6203
Directory traversal vulnerability in startdown.php in the Flyspray ME 1.0.1 (com_flyspray) component for Mambo allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Krishan Flyspray Me 1.0.1
1 EDB exploit
5
CVSSv2
CVE-2006-6888
P-News 1.16 and 1.17 store sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the administrative account name and password hash via a direct request for db/user.dat.
P-news P-news 1.17
P-news P-news 1.16
1 EDB exploit
7.5
CVSSv2
CVE-2007-0558
PHP remote file inclusion vulnerability in modules/mail/main.php in Inter7 vHostAdmin 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the MODULES_DIR parameter.
Inter7 Vhostadmin 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-0559
PHP remote file inclusion vulnerability in config.php in RPW 1.0.2 allows remote malicious users to execute arbitrary PHP code via a URL in the sql_language parameter.
Rp World Rp World 1.0.2
1 EDB exploit
6.8
CVSSv2
CVE-2007-0491
PHP remote file inclusion vulnerability in up.php in Sky GUNNING MySpeach 3.0.6 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the my_ms[root] parameter, a different vector than CVE-2006-4630. NOTE: Some of these details are obtaine...
Sky Gunning Myspeach
1 EDB exploit
10
CVSSv2
CVE-2007-0495
PHP remote file inclusion vulnerability in include/config.inc.php in PhpSherpa allows remote malicious users to execute arbitrary PHP code via a URL in the racine parameter.
Phpsherpa Phpsherpa
1 EDB exploit
7.5
CVSSv2
CVE-2007-0508
PHP remote file inclusion vulnerability in lib/selectlang.php in BBClone 0.31 allows remote malicious users to execute arbitrary PHP code via a URL in the BBC_LANGUAGE_PATH parameter.
Bbclone Bbclone 0.31
1 EDB exploit
6.8
CVSSv2
CVE-2007-0511
Multiple PHP remote file inclusion vulnerabilities in phpXMLDOM (phpXD) 0.3 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the path parameter to (1) dom.php, (2) dtd.php, or (3) parser.php in include/.
Phpxmldom Phpxmldom 0.3
1 EDB exploit
10
CVSSv2
CVE-2006-6568
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the phpEx parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
6.8
CVSSv2
CVE-2006-6877
Directory traversal vulnerability in index.php in Matteo Lucarelli 3editor CMS 0.42 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via a .. (dot dot) in the page parameter.
Matteo Lucarelli 3editor Cms
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »