Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
auracms auracms 1.62 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-4908
Directory traversal vulnerability in index.php in AuraCMS 2.1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the pilih parameter.
Auracms Auracms 1.5 Rc
Auracms Auracms 1.62
Auracms Auracms 1.0
Auracms Auracms 1.5
Auracms Auracms 2.0
Auracms Auracms 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-0811
Multiple SQL injection vulnerabilities in AuraCMS 1.62 allow remote malicious users to execute arbitrary SQL commands via (1) the kid parameter to (a) mod/dl.php or (b) mod/links.php, and (2) the query parameter to search.php.
Auracms Auracms 1.62
1 EDB exploit
7.5
CVSSv2
CVE-2010-4774
SQL injection vulnerability in pdf.php in AuraCMS 1.62 allows remote malicious users to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-4804 and CVE-2007-4171.
Auracms Auracms 1.62
1 EDB exploit
7.5
CVSSv2
CVE-2008-0390
stat.php in AuraCMS 1.62, and Mod Block Statistik for AuraCMS, allows remote malicious users to inject arbitrary PHP code into online.db.txt via the X-Forwarded-For HTTP header in a stat action to index.php, and execute online.db.txt via a certain request to index.php.
Auracms Auracms 1.62
Auracms Mod Block Statistik
1 EDB exploit
6.8
CVSSv2
CVE-2007-4886
Incomplete blacklist vulnerability in index.php in AuraCMS 1.x and probably 2.x allows remote malicious users to execute arbitrary PHP code via a (1) UNC share pathname, or a (2) ftp, (3) ftps, or (4) ssh2.sftp URL, in the pilih parameter, for which PHP remote file inclusion is b...
Auracms Auracms 1.1
Auracms Auracms 1.2
Auracms Auracms 2.1
Auracms Auracms 1.6 Beta
Auracms Auracms 1.61
Auracms Auracms 1.3
Auracms Auracms 1.5
Auracms Auracms 1.0
Auracms Auracms 1.62
Auracms Auracms 2.0
1 EDB exploit
6.5
CVSSv2
CVE-2014-1401
Multiple SQL injection vulnerabilities in AuraCMS 2.3 and previous versions allow remote authenticated users to execute arbitrary SQL commands via the (1) search parameter to mod/content/content.php or (2) CLIENT_IP, (3) X_FORWARDED_FOR, (4) X_FORWARDED, (5) FORWARDED_FOR, or (6)...
Auracms Auracms 2.2.2
Auracms Auracms 1.5
Auracms Auracms 2.1
Auracms Auracms 2.2
Auracms Auracms 2.2.1
Auracms Auracms 1.62
Auracms Auracms 2.0
Auracms Auracms 1.1
Auracms Auracms 1.0
Auracms Auracms
Auracms Auracms 1.61
Auracms Auracms 1.3
Auracms Auracms 1.2
1 EDB exploit
4.3
CVSSv2
CVE-2006-3558
Multiple cross-site scripting (XSS) vulnerabilities in Arif Supriyanto auraCMS 1.62 allow remote malicious users to inject arbitrary web script or HTML via (1) the judul_artikel parameter in teman.php and (2) the title of an article sent to admin, which is displayed when unauthen...
Arif Supriyanto Auracms 1.62
7.5
CVSSv2
CVE-2006-3559
Multiple SQL injection vulnerabilities in Arif Supriyanto auraCMS 1.62 allow remote malicious users to execute arbitrary SQL commands and delete all shoutbox messages via the (1) name and (2) pesan parameters.
Arif Supriyanto Auracms 1.62
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started