Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4063
Multiple PHP remote file inclusion vulnerabilities in Csaba Godor SAPID Blog Beta 2 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) root_path parameter to (a) usr/extensions/get_blog_infochannel.inc.php, (b) usr/extensions/get...
Csaba Godor Sapid Blog Beta 2 Initial
4 EDB exploits
6.4
CVSSv2
CVE-2006-4962
Directory traversal vulnerability in pbd_engine.php in Php Blue Dragon 2.9.1 and previous versions allows remote malicious users to read and execute arbitrary local files via a .. (dot dot) sequence via the phpExt parameter, as demonstrated by executing PHP code in a log file.
Blue Dragon Php Blue Dragon Platinum 2.8.0
Blue Dragon Php Blue Dragon Platinum 2.9.1
2 EDB exploits
5
CVSSv2
CVE-2006-5834
Directory traversal vulnerability in general.php in OpenSolution Quick.Cms.Lite 0.3 allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the sLanguage Cookie parameter.
Opensolution Quick.cms.lite 0.3
1 EDB exploit
6.8
CVSSv2
CVE-2006-5894
Directory traversal vulnerability in lang.php in Rama CMS 0.68 and previous versions, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang cookie, as demonstrated by injecting PHP sequences int...
Rama Cms Rama Cms
1 EDB exploit
7.5
CVSSv2
CVE-2007-0337
Directory traversal vulnerability in sesskglogadmin.php in KGB 1.9 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the skinnn parameter, as demonstrated by invoking kg.php with a postek parameter containing PH...
Kgb Kgb
1 EDB exploit
7.5
CVSSv2
CVE-2009-2122
SQL injection vulnerability in viewimg.php in the Paolo Palmonari Photoracer plugin 1.0 for WordPress allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Paolo Palmonari Photoracer Plugin For Wordpress 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-1708
PHP remote file inclusion vulnerability in lib/db/ez_sql.php in ttCMS 4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the lib_path parameter.
Ttcms Ttforum 1
Ttcms Ttforum 4
Ttcms Ttforum 2
Ttcms Ttforum 3
1 EDB exploit
7.5
CVSSv2
CVE-2007-1791
SQL injection vulnerability in wall.php in Picture-Engine 1.2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Alexscriptengine Picture-engine
1 EDB exploit
6.8
CVSSv2
CVE-2006-6613
Directory traversal vulnerability in language.php in phpAlbum 0.4.1 Beta 6 and previous versions, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote malicious users to include and execute arbitrary local files or obtain sensitive information via a .....
Phpalbum.net Phpalbum
1 EDB exploit
7.5
CVSSv2
CVE-2006-6633
PHP remote file inclusion vulnerability in include/yapbb_session.php in YapBB 1.2 Beta2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[include_Bit] parameter.
Yapbb Yapbb 1.1
Yapbb Yapbb 1.2
Yapbb Yapbb
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »