Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fuzzylime fuzzylime cms vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2008-3098
Cross-site scripting (XSS) vulnerability in admin/usercheck.php in fuzzylime (cms) prior to 3.03 allows remote malicious users to inject arbitrary web script or HTML via the user parameter to the login form.
Fuzzylime Fuzzylime Cms 3.01a
Fuzzylime Fuzzylime Cms 3.01b
Fuzzylime Fuzzylime Cms 3.02
Fuzzylime Fuzzylime Cms 3.0
Fuzzylime Fuzzylime Cms 3.01
1 EDB exploit
1000
VMScore
CVE-2008-6833
Directory traversal vulnerability in commsrss.php in fuzzylime (cms) prior to 3.01b allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in a files array element for a blogs action, as demonstrated by the files[0] parameter.
Fuzzylime Fuzzylime \\(cms\\) 3.0.1a
Fuzzylime Fuzzylime \\(cms\\) 3.0
Fuzzylime Fuzzylime \\(cms\\) 3.0.1
1 EDB exploit
1000
VMScore
CVE-2008-6834
Multiple directory traversal vulnerabilities in fuzzylime (cms) 3.01 and 3.01a allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in (1) the s parameter to code/commupdate.php in a count action or (2) the heads parameter to code/newsheads...
Fuzzylime Fuzzylime \\(cms\\) 3.0.1
Fuzzylime Fuzzylime \\(cms\\) 3.0.1a
1 EDB exploit
685
VMScore
CVE-2008-3165
Directory traversal vulnerability in rss.php in fuzzylime (cms) 3.01a and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the p parameter, as demonstrated using content.php, a d...
Fuzzylime Fuzzylime Cms
1 EDB exploit
765
VMScore
CVE-2008-3164
Directory traversal vulnerability in blog.php in fuzzylime (cms) 3.01, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the file parameter. NOTE: it was later reported that 3.01a is also affected.
Fuzzylime Fuzzylime Cms 3.01
1 EDB exploit
755
VMScore
CVE-2008-5291
Directory traversal vulnerability in code/track.php in FuzzyLime 3.03 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the p parameter, a different vector than CVE-2007-4805 and CVE-2008-3165.
Fuzzylime Fuzzylime Cms 3.03
1 EDB exploit
685
VMScore
CVE-2009-2177
code/display.php in fuzzylime (cms) 3.03a and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to conduct directory traversal attacks and overwrite arbitrary files via a "....//" (dot dot) in the s parameter, which is collapsed into a ...
Fuzzylime Fuzzylime Cms 3.03a
1 EDB exploit
755
VMScore
CVE-2009-2176
Multiple directory traversal vulnerabilities in fuzzylime (cms) 3.03a and previous versions, when magic_quotes_gpc is disabled, allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the (1) list parameter to code/confirm.ph...
Fuzzylime Fuzzylime Cms 3.03a
1 EDB exploit
755
VMScore
CVE-2007-4805
Directory traversal vulnerability in getgalldata.php in fuzzylime (cms) 3.0 and previous versions allows remote malicious users to include arbitrary local files via a .. (dot dot) in the p parameter.
Fuzzylime Fuzzylime 3.0
1 EDB exploit
685
VMScore
CVE-2008-1405
PHP remote file inclusion vulnerability in code/display.php in fuzzylime (cms) 3.01 allows remote malicious users to execute arbitrary PHP code via a URL in the admindir parameter.
Fuzzylime Fuzzylime 3.01
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started