Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
3l3ctric-cracker vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0559
PHP remote file inclusion vulnerability in config.php in RPW 1.0.2 allows remote malicious users to execute arbitrary PHP code via a URL in the sql_language parameter.
Rp World Rp World 1.0.2
1 EDB exploit
NA
CVE-2006-6203
Directory traversal vulnerability in startdown.php in the Flyspray ME 1.0.1 (com_flyspray) component for Mambo allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Krishan Flyspray Me 1.0.1
1 EDB exploit
NA
CVE-2007-0360
PHP remote file inclusion vulnerability in lang/index.php in Oreon 1.2.3 RC4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the file parameter.
Oreon Project Oreon
1 EDB exploit
NA
CVE-2007-2664
PHP remote file inclusion vulnerability in includes/common.php in Yaap 1.5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the root_path parameter, possibly related to the __autoload function.
Tomasz Rekawek Yet Another Asterisk Panel
1 EDB exploit
NA
CVE-2006-6711
PHP remote file inclusion vulnerability in compteur/mapage.php in Newxooper 0.9.1 allows remote malicious users to execute arbitrary PHP code via a URL in the chemin parameter.
Newxooper Newxooper 0.9.1
1 EDB exploit
NA
CVE-2006-6891
Vz (Adp) Forum 2.0.3 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the administrative account name and password hash via a direct request for users/admin.txt.
Vz Forum Vz Forum 2.0.3
1 EDB exploit
NA
CVE-2006-6888
P-News 1.16 and 1.17 store sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the administrative account name and password hash via a direct request for db/user.dat.
P-news P-news 1.17
P-news P-news 1.16
1 EDB exploit
NA
CVE-2007-0491
PHP remote file inclusion vulnerability in up.php in Sky GUNNING MySpeach 3.0.6 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the my_ms[root] parameter, a different vector than CVE-2006-4630. NOTE: Some of these details are obtaine...
Sky Gunning Myspeach
1 EDB exploit
NA
CVE-2007-0314
Multiple PHP remote file inclusion vulnerabilities in Article System 1.0 allow remote malicious users to execute arbitrary PHP code via a URL in the INCLUDE_DIR parameter to (1) forms.php, (2) issue_edit.php, (3) client.php, and (4) classes.php.
Article System Article System 1.0
1 EDB exploit
NA
CVE-2006-6877
Directory traversal vulnerability in index.php in Matteo Lucarelli 3editor CMS 0.42 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via a .. (dot dot) in the page parameter.
Matteo Lucarelli 3editor Cms
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »