Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drago84 vulnerabilities and exploits
(subscribe to this query)
765
VMScore
CVE-2006-4992
Multiple PHP remote file inclusion vulnerabilities in JD-WordPress for Joomla! (com_jd-wp) 2.0-1.0 RC2 allow remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter in (1) wp-comments-post.php, (2) wp-feed.php, or (3) wp-trackback.p...
Joomla Jd-wordpress 2.0.1.0 Rc2
3 EDB exploits
515
VMScore
CVE-2006-4113
PHP remote file inclusion vulnerability in genpage-cgi.php in Brian Fraval hitweb 4.2 and possibly earlier versions allows remote malicious users to execute arbitrary PHP code via the REP_INC parameter.
Hitweb Hitweb
1 EDB exploit
515
VMScore
CVE-2006-4121
PHP remote file inclusion vulnerability in owimg.php3 in See-Commerce 1.0.625 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path parameter.
See-commerce See-commerce 1.0.625
1 EDB exploit
515
VMScore
CVE-2006-4158
PHP remote file inclusion vulnerability in Login.php in Spaminator 1.7 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Spaminator Spaminator
1 EDB exploit
755
VMScore
CVE-2006-4159
Multiple PHP remote file inclusion vulnerabilities in Chaussette 080706 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the _BASE parameter to scripts in Classes/ including (1) Evenement.php, (2) Event.php, (3) Event_for_month.php, (4...
Chaussette Chaussette
1 EDB exploit
755
VMScore
CVE-2006-4160
Multiple PHP remote file inclusion vulnerabilities in Tony Bibbs and Vincent Furia MVCnPHP 3.0 allow remote malicious users to execute arbitrary PHP code via a URL in the glConf[path_library] parameter to (1) BaseCommand.php, (2) BaseLoader.php, and (3) BaseView.php.
Mvcnphp Mvcnphp 3.0
1 EDB exploit
755
VMScore
CVE-2006-4213
PHP remote file inclusion vulnerability in config.php in David Kent Norman Thatware 0.4.6 and possibly earlier allows remote malicious users to execute arbitrary PHP code via a URL in the root_path parameter.
David Kent Norman Thatware
1 EDB exploit
NA
CVE-2006-4216
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-4159. Reason: This candidate is a duplicate of CVE-2006-4159. Notes: All CVE users should reference CVE-2006-4159 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
755
VMScore
CVE-2006-5587
Multiple PHP remote file inclusion vulnerabilities in MDweb 1.3 and previous versions (Mdweb132-postgres) allow remote malicious users to execute arbitrary PHP code via a URL in the chemin_appli parameter in (1) admin/inc/organisations/form_org.inc.php and (2) admin/inc/organisat...
Mdweb Mdweb
1 EDB exploit
685
VMScore
CVE-2002-2298
PHP remote file inclusion vulnerability in config.php in Thatware 0.3 up to and including 0.5.3 allows remote malicious users to execute arbitrary PHP code via the root_path parameter.
Atthat.com Thatware
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »