Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bd0rk vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0489
PHP remote file inclusion vulnerability in includes/functions.visohotlink.php in VisoHotlink 1.01 and possibly earlier allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Visohotlink Visohotlink
1 EDB exploit
NA
CVE-2006-6065
PHP remote file inclusion vulnerability in includes/mx_common.php in the CalSnails Module for MxBB Portal 1.06 allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Calsnails Module 1.06
1 EDB exploit
NA
CVE-2007-1934
Directory traversal vulnerability in member.php in the eBoard 1.0.7 module for PHP-Nuke allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the GLOBALS[name] parameter.
Php-nuke Eboard Module 1.0.7
1 EDB exploit
NA
CVE-2006-6295
PHP remote file inclusion vulnerability in includes/mx_common.php in the mx_tinies 1.3.0 Module for MxBB Portal 1.06 allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Mx Tinies 1.3.0
1 EDB exploit
NA
CVE-2007-1539
Directory traversal vulnerability in inc/map.func.php in pragmaMX Landkarten 2.1 module allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the module_name parameter, as demonstrated via a static PHP code injection attack in an Apache log file.
Pragmamx Landkarten 2.1
1 EDB exploit
NA
CVE-2006-6545
PHP remote file inclusion vulnerability in includes/common.php in the ErrorDocs 1.0.0 and previous versions module for mxBB (mx_errordocs) allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Php Errordocs 1.0.0
1 EDB exploit
NA
CVE-2002-1656
X-News (x_news) 1.1 and previous versions allows malicious users to authenticate as other users by obtaining the MD5 checksum of the password, e.g. via sniffing or the users.txt data file, and providing it in a cookie.
Xqus X-news 1.1
Xqus X-news 1.0
1 EDB exploit
NA
CVE-2007-3935
PHP remote file inclusion vulnerability in link_main.php in the SupaNav 1.0.0 module for phpBB allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Supanav 1.0.0
1 EDB exploit
NA
CVE-2010-2146
PHP remote file inclusion vulnerability in banned.php in Visitor Logger allows remote malicious users to execute arbitrary PHP code via a URL in the VL_include_path parameter.
Graviton-mediatech Visitor Logger
1 EDB exploit
NA
CVE-2007-2346
Multiple PHP remote file inclusion vulnerabilities in PHP-Generics 1.0 beta allow remote malicious users to execute arbitrary PHP code via a URL in the _APP_RELATIVE_PATH parameter to (1) include.php, (2) dbcommon/include.php, and (3) exception/include.php.
Php-generics Php-generics 1.0 Beta
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »