Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dj7xpl vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1237
SQL injection vulnerability in news.php in FlexPHPNews 0.0.3 allows remote malicious users to execute arbitrary SQL commands via the newsid parameter.
China-on-site Flexphpnews
1 EDB exploit
NA
CVE-2007-2665
PHP remote file inclusion vulnerability in block.php in PhpFirstPost 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the Include parameter.
Php Firstpost Php Firstpost 0.1
1 EDB exploit
NA
CVE-2007-2715
Admin/users.php in Snaps! Gallery 1.4.4 allows remote malicious users to change arbitrary usernames and passwords via the (1) username, or the (2) password and password2 parameters in an edit action.
Snaps Gallery Snaps Gallery 1.4.4
1 EDB exploit
NA
CVE-2007-2157
Directory traversal vulnerability in upload/force_download.php in Zomplog 3.8 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Zomplog Zomplog 3.8
1 EDB exploit
NA
CVE-2007-2168
Static code injection vulnerability in process.php in AimStats 3.2 and previous versions allows remote malicious users to inject PHP code into config.php via the databasehost parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
Aimstats Aimstats
1 EDB exploit
NA
CVE-2007-2183
SQL injection vulnerability in index.php in PHP-Ring Webring System (aka uPHP_ring_website) 0.9 allows remote malicious users to execute arbitrary SQL commands via the ring parameter.
Php-ring Webring System 0.9
1 EDB exploit
NA
CVE-2007-2642
Directory traversal vulnerability in galeria.php in R2K Gallery 1.7 allows remote malicious users to read arbitrary files via a .. (dot dot) in the lang2 parameter.
R2k R2k Gallery 1.7
1 EDB exploit
NA
CVE-2007-2643
Directory traversal vulnerability in phpThumb.php in PinkCrow Designs Gallery or maGAZIn 2.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the src parameter.
Pinkcrow Designs Designs Gallery Magazin 2.0
1 EDB exploit
NA
CVE-2007-1487
Directory traversal vulnerability in index.php in Sascha Schroeder (aka CyberTeddy or Cyber-inside) WebLog allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter in a showarticles action.
Cyber Inside Weblog
Cyberteddy Weblog
Sascha Schroeder Weblog
1 EDB exploit
NA
CVE-2007-1525
Direct static code injection vulnerability in postpost.php in Dayfox Blog (dfblog) 4 allows remote malicious users to execute arbitrary PHP code via the cat parameter, which can be executed via a request to posts.php.
Dayfox Designs Dayfox Blog 4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »