Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
houssamix vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2008-4764
Directory traversal vulnerability in the eXtplorer module (com_extplorer) 2.0.0 RC2 and previous versions in Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the dir parameter in a show_error action.
Extplorer Com Extplorer
1 EDB exploit
1000
VMScore
CVE-2008-0148
TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote malicious users to execute arbitrary shell commands via the cmd parameter in a direct request.
Tutos Tutos 1.3
1 EDB exploit
755
VMScore
CVE-2008-0491
SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote malicious users to execute arbitrary SQL commands via the album parameter.
Fgallery Project Fgallery 2.4.1
1 EDB exploit
755
VMScore
CVE-2008-0502
PHP remote file inclusion vulnerability in templates/Official/part_userprofile.php in Connectix Boards 0.8.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the template_path parameter.
Connectix Connectix Boards 0.8.1
Connectix Connectix Boards
1 EDB exploit
685
VMScore
CVE-2008-0566
PHP remote file inclusion vulnerability in includes/smarty.php in DeltaScripts PHP Links 1.3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the full_path_to_public_program parameter.
Deltascripts Php Links 1.3
1 EDB exploit
655
VMScore
CVE-2007-4922
SQL injection vulnerability in play.php in the jeuxflash 1.0 module for KwsPHP allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a play ac action to index.php. NOTE: some details are obtained from third party information.
Kwsphp Kwsphp
Jeuxflash Jeuxflash Module 1.0
1 EDB exploit
755
VMScore
CVE-2007-6663
SQL injection vulnerability in (1) Puarcade.php and (2) PUarcade.html.php in Pragmatic Utopia PU Arcade (com_puarcade) 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the fid parameter to index.php.
Pragmatic Utopia Pu Arcade 2.0.3
Pragmatic Utopia Pu Arcade 2.1.2
Pragmatic Utopia Pu Arcade 2.1.3
1 EDB exploit
755
VMScore
CVE-2007-6577
Multiple SQL injection vulnerabilities in index.php in zBlog 1.2 allow remote malicious users to execute arbitrary SQL commands via (1) the categ parameter in a categ action or (2) the article parameter in an articles action.
Zsuite Zblog 1.2
1 EDB exploit
505
VMScore
CVE-2008-0260
minimal Gallery 0.8 allows remote malicious users to obtain configuration information via a direct request to php_info.php, which calls the phpinfo function.
Minimal Design Minimal Gallery 0.8
1 EDB exploit
755
VMScore
CVE-2008-0468
SQL injection vulnerability in category.php in Flinx 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Flinx Flinx
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »