Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fuzzylime fuzzylime cms 3.01 vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2008-3098
Cross-site scripting (XSS) vulnerability in admin/usercheck.php in fuzzylime (cms) prior to 3.03 allows remote malicious users to inject arbitrary web script or HTML via the user parameter to the login form.
Fuzzylime Fuzzylime Cms 3.01a
Fuzzylime Fuzzylime Cms 3.01b
Fuzzylime Fuzzylime Cms 3.02
Fuzzylime Fuzzylime Cms 3.0
Fuzzylime Fuzzylime Cms 3.01
1 EDB exploit
765
VMScore
CVE-2008-3164
Directory traversal vulnerability in blog.php in fuzzylime (cms) 3.01, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the file parameter. NOTE: it was later reported that 3.01a is also affected.
Fuzzylime Fuzzylime Cms 3.01
1 EDB exploit
1000
VMScore
CVE-2008-6833
Directory traversal vulnerability in commsrss.php in fuzzylime (cms) prior to 3.01b allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in a files array element for a blogs action, as demonstrated by the files[0] parameter.
Fuzzylime Fuzzylime \\(cms\\) 3.0.1a
Fuzzylime Fuzzylime \\(cms\\) 3.0
Fuzzylime Fuzzylime \\(cms\\) 3.0.1
1 EDB exploit
685
VMScore
CVE-2008-1405
PHP remote file inclusion vulnerability in code/display.php in fuzzylime (cms) 3.01 allows remote malicious users to execute arbitrary PHP code via a URL in the admindir parameter.
Fuzzylime Fuzzylime 3.01
1 EDB exploit
685
VMScore
CVE-2008-3165
Directory traversal vulnerability in rss.php in fuzzylime (cms) 3.01a and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the p parameter, as demonstrated using content.php, a d...
Fuzzylime Fuzzylime Cms
1 EDB exploit
1000
VMScore
CVE-2008-6834
Multiple directory traversal vulnerabilities in fuzzylime (cms) 3.01 and 3.01a allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in (1) the s parameter to code/commupdate.php in a count action or (2) the heads parameter to code/newsheads...
Fuzzylime Fuzzylime \\(cms\\) 3.0.1
Fuzzylime Fuzzylime \\(cms\\) 3.0.1a
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started