Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dun vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6223
PHP remote file inclusion vulnerability in visualizza.php in Way Of The Warrior (WOTW) 5.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the plancia parameter to crea.php.
Wotw Way Of The Warrior 5.0
1 EDB exploit
NA
CVE-2008-6410
Directory traversal vulnerability in show.php in ol'bookmarks manager 0.7.5 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the show parameter.
Brian Wilson Ol\\'bookmarks
1 EDB exploit
NA
CVE-2008-3420
Multiple SQL injection vulnerabilities in Mobius for Mimsy XG 1 1.4.4.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to browse.php or (2) the s parameter in an exhibitions action to detail.php.
Willo Mobius Web Publishing Software
1 EDB exploit
NA
CVE-2008-4331
Directory traversal vulnerability in library/pagefunctions.inc.php in phpOCS 0.1 beta3 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the act parameter to index.php.
Phpocs Phpocs 0.1
Phpocs Phpocs
1 EDB exploit
NA
CVE-2008-2964
SQL injection vulnerability in guide.php in ResearchGuide 0.5 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Researchguide Researchguide 0.5
1 EDB exploit
NA
CVE-2008-4712
Directory traversal vulnerability in pages/showblog.php in LnBlog 0.9.0 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the plugin parameter.
Lnblog Lnblog
Lnblog Lnblog 0.8.1
Lnblog Lnblog 0.8.2
Lnblog Lnblog 0.8.0
1 EDB exploit
NA
CVE-2009-2310
SQL injection vulnerability in include/get_read.php in Extensible-BioLawCom CMS (X-BLC) 0.2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the section parameter.
Bow Der Kleine X-blc
Bow Der Kleine X-blc 0.1.4
1 EDB exploit
NA
CVE-2009-2313
Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the name parameter.
Jinzora Jinzora 2.5.1
Jinzora Jinzora 0.1.1
Jinzora Jinzora 0.3.1
Jinzora Jinzora 2.0.1
Jinzora Jinzora 2.6
Jinzora Jinzora 0.9.2
Jinzora Jinzora 2.7.5
Jinzora Jinzora 2.0
Jinzora Jinzora 2.3.4
Jinzora Jinzora 2.3.3
Jinzora Jinzora 0.3
Jinzora Jinzora 0.2
Jinzora Jinzora 0.6.2
Jinzora Jinzora 0.5
Jinzora Jinzora 0.9.1
Jinzora Jinzora 0.9.4
Jinzora Jinzora 2.3.2
Jinzora Jinzora 2.3.1
Jinzora Jinzora 0.8.1
Jinzora Jinzora 0.7
Jinzora Jinzora 0.9.3
Jinzora Jinzora 1.1
1 EDB exploit
NA
CVE-2008-4739
Directory traversal vulnerability in index.php in PlugSpace 0.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the navi parameter.
Plugspace Plugspace 0.1
1 EDB exploit
NA
CVE-2008-6224
Directory traversal vulnerability in visualizza.php in Way Of The Warrior (WOTW) 5.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the plancia parameter.
Samelinux Way Of The Warrior
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »