Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpcollab phpcollab 2.5.rc3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1495
SQL injection vulnerability in general/sendpassword.php in (1) PHPCollab 2.4 and 2.5.rc3, and (2) NetOffice 2.5.3-pl1 and 2.6.0b2 allows remote malicious users to execute arbitrary SQL commands via the loginForm parameter in the "forgotten password" option.
Phpcollab Phpcollab 2.5.rc3
Phpcollab Phpcollab 2.4
Netoffice Netoffice 2.5.3 Pl1
1 EDB exploit
NA
CVE-2008-4304
general/login.php in phpCollab 2.5 rc3 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in unspecified input related to the SSL_CLIENT_CERT environment variable. NOTE: in some environments, SSL_CLIENT_CERT always has a bas...
Phpcollab Phpcollab 2.5
Phpcollab Phpcollab 2.2
Phpcollab Phpcollab 2.4
Phpcollab Phpcollab
Phpcollab Phpcollab 2.3
NA
CVE-2008-4305
Static code injection vulnerability in installation/setup.php in phpCollab 2.5 rc3 and previous versions allows remote authenticated administrators to inject arbitrary PHP code into include/settings.php via the URI.
Php-collab Php-collab 2.4
Php-collab Php-collab 2.3
Php-collab Php-collab 2.2
Php-collab Php-collab
NA
CVE-2008-4303
Multiple SQL injection vulnerabilities in phpCollab 2.5 rc3, 2.4, and previous versions allow remote malicious users to execute arbitrary SQL commands via the loginForm parameter to general/login.php, and unspecified other vectors.
Php-collab Php-collab 2.4
Php-collab Php-collab 2.3
Php-collab Php-collab 2.2
Php-collab Php-collab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started