Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dayfox designs dayfox blog 4 vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2007-1525
Direct static code injection vulnerability in postpost.php in Dayfox Blog (dfblog) 4 allows remote malicious users to execute arbitrary PHP code via the cat parameter, which can be executed via a request to posts.php.
Dayfox Designs Dayfox Blog 4
1 EDB exploit
755
VMScore
CVE-2008-3564
Multiple directory traversal vulnerabilities in index.php in Dayfox Blog 4 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) p, (2) cat, and (3) archive parameters. NOTE: in some environments, this can be leveraged for remote ...
Dayfox Designs Dayfox Blog 4
1 EDB exploit
668
VMScore
CVE-2007-0150
Multiple PHP remote file inclusion vulnerabilities in index.php in Dayfox Blog allow remote malicious users to execute arbitrary PHP code via a URL in the (1) page, (2) subject, and (3) q parameters.
Dayfox Designs Dayfox Blog 4
668
VMScore
CVE-2006-5183
Multiple PHP remote file inclusion vulnerabilities in Dayfox Designs Dayfox Blog 2.0 allow remote malicious users to execute arbitrary PHP code via a URL in the slogin parameter in the (1) adminlog.php, (2) postblog.php, (3) index.php, or (4) index2.php script in /edit.
Dayfox Designs Dayfox Blog 2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started