Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpx phpx 3.2.3 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2004-0248
Cross-site scripting vulnerability (XSS) in PHPX 3.2.3 allows remote malicious users to execute arbitrary script as other users by injecting arbitrary HTML or script into (1) keywords argument of main.inc.php, (2) body argument of help.inc.php, or (3) the subject field in Persona...
Phpx Phpx 3.2.3
10
CVSSv2
CVE-2004-0249
PHPX 2.0 up to and including 3.2.4 allows remote malicious users to gain access to other accounts by modifying the cookie's PXL variable to reference another userID.
Phpx Phpx 3.2.3
1 EDB exploit
5
CVSSv2
CVE-2004-2364
Cross-site request forgery (CSRF) vulnerability in PHPX 3.0 up to and including 3.2.6 allows remote malicious users to execute arbitrary commands via URLs that are automatically executed on behalf of the administrator, as demonstrated using (1) admin/page.php, (2) admin/news.php,...
Phpx Phpx 3.2.4
Phpx Phpx 3.2.5
Phpx Phpx 3.1.0
Phpx Phpx 3.1.2
Phpx Phpx 3.0.4
Phpx Phpx 3.0.0
Phpx Phpx 3.1.4
Phpx Phpx 3.0.2
Phpx Phpx 3.0.1
Phpx Phpx 3.0.6
Phpx Phpx 3.2.0
Phpx Phpx 3.1.3
Phpx Phpx 3.2.2
Phpx Phpx 3.0.7
Phpx Phpx 3.1.1
Phpx Phpx 3.2.6
Phpx Phpx 3.2.3
Phpx Phpx 3.0.5
Phpx Phpx 3.2.1
Phpx Phpx 3.0.3
6 EDB exploits
4.3
CVSSv2
CVE-2004-2363
Validate-Before-Canonicalize vulnerability in the checkURI function in functions.inc.php in PHPX 3.0 up to and including 3.2.6 allows remote malicious users to conduct cross-site scripting (XSS) attacks via hex-encoded tags, which bypass the check for literal "<", &q...
Phpx Phpx 3.2.4
Phpx Phpx 3.2.5
Phpx Phpx 3.1.0
Phpx Phpx 3.1.2
Phpx Phpx 3.0.4
Phpx Phpx 3.0.0
Phpx Phpx 3.1.4
Phpx Phpx 3.0.2
Phpx Phpx 3.0.1
Phpx Phpx 3.0.6
Phpx Phpx 3.2.0
Phpx Phpx 3.1.3
Phpx Phpx 3.2.2
Phpx Phpx 3.0.7
Phpx Phpx 3.1.1
Phpx Phpx 3.2.6
Phpx Phpx 3.2.3
Phpx Phpx 3.0.5
Phpx Phpx 3.2.1
Phpx Phpx 3.0.3
1 EDB exploit
5
CVSSv2
CVE-2004-2362
PHPX 3.2.6 and previous versions allows remote malicious users to obtain the physical path of PHPX via a null or invalid value in the limit parameter, which leaks the pathname in a database error message, as demonstrated using forums.php.
Phpx Phpx 3.2.4
Phpx Phpx 2.2.1
Phpx Phpx 3.2.5
Phpx Phpx 3.1.0
Phpx Phpx 3.1.2
Phpx Phpx 3.0.4
Phpx Phpx 3.0.0
Phpx Phpx 3.1.4
Phpx Phpx 3.0.2
Phpx Phpx 3.0.1
Phpx Phpx 3.0.6
Phpx Phpx 3.2.0
Phpx Phpx 1.0.10
Phpx Phpx 3.1.3
Phpx Phpx 3.2.2
Phpx Phpx 2.2.4
Phpx Phpx 2.1.0
Phpx Phpx 3.0.7
Phpx Phpx 2.2.3
Phpx Phpx 3.1.1
Phpx Phpx 3.2.6
Phpx Phpx 2.2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started