Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3289
PHP remote file inclusion vulnerability in spaw/spaw_control.class.php in the WiwiMod 0.4 module for XOOPS allows remote malicious users to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a duplicate of CVE-2006-4656.
Xoops Wiwimod Module 0.4
1 EDB exploit
NA
CVE-2007-5781
PHP remote file inclusion vulnerability in inc/sige_init.php in Sige 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the SYS_PATH parameter.
Sige Sige 0.1
1 EDB exploit
NA
CVE-2008-2342
Directory traversal vulnerability in attachments.php in News Manager 2.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the id parameter.
News Manager News Manager 2.0
1 EDB exploit
NA
CVE-2008-1857
Multiple directory traversal vulnerabilities in viewsource.php in Make our Life Easy (Mole) 2.1.0 allow remote malicious users to read arbitrary files via directory traversal sequences in the (1) dirn and (2) fname parameters.
Mole Make Our Life Easy 2.1.0
1 EDB exploit
NA
CVE-2008-2341
PHP remote file inclusion vulnerability in ch_readalso.php in News Manager 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the read_xml_include parameter.
Avalonnet News Manager 2.0
1 EDB exploit
NA
CVE-2008-0091
Directory traversal vulnerability in download2.php in AGENCY4NET WEBFTP 1 allows remote malicious users to read and delete arbitrary files via a .. (dot dot) in the file parameter.
Agency4net Webftp 1
1 EDB exploit
NA
CVE-2008-2215
Multiple directory traversal vulnerabilities in Project-Based Calendaring System (PBCS) 0.7.1-1 allow remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter to (1) src/yopy_sync.php and (2) system-logger/print_logs.php.
Pbcs Project-based Calendaring System 0.7.1-1
1 EDB exploit
NA
CVE-2008-2343
News Manager 2.0 allows remote malicious users to bypass restrictions and obtain sensitive information via a direct request to (1) db/connect_str.php and (2) login/info.php.
News Manager News Manager 2.0
1 EDB exploit
NA
CVE-2007-0703
PHP remote file inclusion vulnerability in library/StageLoader.php in WebBuilder 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[core][module_path] parameter.
Webbuilder Webbuilder
1 EDB exploit
NA
CVE-2007-0810
PHP remote file inclusion vulnerability in MVCnPHP/BaseView.php in GeekLog 2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the glConf[path_libraries] parameter. NOTE: this might be a vulnerability in MVCnPHP rather than a vulnerabi...
Geeklog Geeklog 2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »