Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4063
Multiple PHP remote file inclusion vulnerabilities in Csaba Godor SAPID Blog Beta 2 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) root_path parameter to (a) usr/extensions/get_blog_infochannel.inc.php, (b) usr/extensions/get...
Csaba Godor Sapid Blog Beta 2 Initial
4 EDB exploits
NA
CVE-2006-4962
Directory traversal vulnerability in pbd_engine.php in Php Blue Dragon 2.9.1 and previous versions allows remote malicious users to read and execute arbitrary local files via a .. (dot dot) sequence via the phpExt parameter, as demonstrated by executing PHP code in a log file.
Blue Dragon Php Blue Dragon Platinum 2.8.0
Blue Dragon Php Blue Dragon Platinum 2.9.1
2 EDB exploits
NA
CVE-2007-1708
PHP remote file inclusion vulnerability in lib/db/ez_sql.php in ttCMS 4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the lib_path parameter.
Ttcms Ttforum 1
Ttcms Ttforum 4
Ttcms Ttforum 2
Ttcms Ttforum 3
1 EDB exploit
NA
CVE-2007-1791
SQL injection vulnerability in wall.php in Picture-Engine 1.2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Alexscriptengine Picture-engine
1 EDB exploit
NA
CVE-2007-0764
Unrestricted file upload vulnerability in F3Site 2.1 and previous versions allows remote authenticated administrators to upload and execute arbitrary PHP scripts via GIF86 header in a file in the uplf parameter, which can be later accessed via a relative pathname in the dir param...
F3site F3site 2.1
1 EDB exploit
NA
CVE-2006-4204
Multiple PHP remote file inclusion vulnerabilities in PHProjekt 5.1 and possibly earlier allow remote malicious users to execute arbitrary PHP code via a URL in the (1) path_pre parameter in lib/specialdays.php and the (2) lib_path parameter in lib/dbman_filter.inc.php.
Phprojekt Phprojekt
1 EDB exploit
NA
CVE-2006-4291
PHP remote file inclusion vulnerability in handlers/email/mod.listmail.php in PHlyMail Lite 3.4.4 and previous versions (Build 3.04.04) allows remote malicious users to execute arbitrary PHP code via a URL in the _PM_[path][handler] parameter.
Phlymail Phlymail Lite
1 EDB exploit
NA
CVE-2006-4426
PHP remote file inclusion vulnerability in AES/modules/auth/phpsecurityadmin/include/logout.php in AlberT-EasySite (AES) 1.0a5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the PSA_PATH parameter.
Albert Albert-easysite 0.8.12
Albert Albert-easysite
1 EDB exploit
NA
CVE-2006-4448
Multiple PHP remote file inclusion vulnerabilities in interact 2.2, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) CONFIG[BASE_PATH] parameter in (a) admin/autoprompter.php and (b) includes/common.inc.php, and the...
Interact Learning Community Environment Interact 2.2
1 EDB exploit
NA
CVE-2006-4536
SQL injection vulnerability in module/rejestracja.php in CMS Frogss 0.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the podpis parameter.
Cms Frogss Cms Frogss 0.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »