Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kingoftheworld vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5802
Directory traversal vulnerability in index.php in Firewolf Technologies Synergiser 1.2 RC1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: this can be leveraged to obtain the path by ...
Firewolf Technologies Synergiser
2 EDB exploits
NA
CVE-2007-5771
Flatnuke 3 (aka FlatnuX) allows remote malicious users to obtain administrative access via a myforum%00 cookie.
Flatnuke3 Flatnuke3
1 EDB exploit
NA
CVE-2007-6367
Multiple cross-site scripting (XSS) vulnerabilities in the guestbook in SineCMS 2.3.4 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) username (user) or (2) comment (commento) field, different vectors than CVE-2007-2357.
Sinecms Sinecms
1 EDB exploit
NA
CVE-2007-6396
Direct static code injection vulnerability in index.php in Flat PHP Board 1.2 and previous versions allows remote malicious users to inject arbitrary PHP code via the (1) username, (2) password, and (3) email parameters when registering a user account, which can be executed by ac...
Myupb Flat Php Board 1.2
1 EDB exploit
NA
CVE-2007-6397
Multiple directory traversal vulnerabilities in index.php in Flat PHP Board 1.2 and previous versions allow remote malicious users to (1) create arbitrary files via a .. (dot dot) in the username parameter when registering a user account, and (2) read arbitrary PHP files via a .....
Flat Php Board
1 EDB exploit
NA
CVE-2007-6398
Flat PHP Board 1.2 and previous versions allows remote malicious users to bypass authentication and obtain limited access to an arbitrary user account via the fpb_username cookie.
Flat Php Board
1 EDB exploit
NA
CVE-2007-6399
index.php in Flat PHP Board 1.2 and previous versions allows remote authenticated users to obtain the password for the current user account by reading the password parameter value in the HTML source for the page generated by a profile action.
Myupb Flat Php Board
1 EDB exploit
NA
CVE-2007-5688
Multiple SQL injection vulnerabilities in directory.php in the Multi-Forums (aka Multi Host Forum Pro) module 1.3.3, for phpBB and Invision Power Board (IPB or IP.Board), allow remote malicious users to execute arbitrary SQL commands via the (1) go and (2) cat parameters.
Sebflipper Multi-forums Module 1.3.3
Invision Power Services Invision Power Board
Phpbb Phpbb
1 EDB exploit
NA
CVE-2007-5772
Direct static code injection vulnerability in the download module in Flatnuke 3 allows remote authenticated administrators to inject arbitrary PHP code into a description.it.php file in a subdirectory of Download/ by saving a description and setting fneditmode to 1. NOTE: unauthe...
Flatnuke3 Flatnuke3
1 EDB exploit
NA
CVE-2007-5822
Direct static code injection vulnerability in forum.php in Ben Ng Scribe 0.2 and previous versions allows remote malicious users to inject arbitrary PHP code into a certain file in regged/ via the username parameter in a Register action, possibly related to the register function ...
Scribe Scribe 0.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »