Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nuffsaid vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3141
PHP remote file inclusion vulnerability in core/editor.php in phpWebThings 1.5.2 allows remote malicious users to execute arbitrary PHP code via a URL in the editor_insert_top parameter. NOTE: the editor_insert_bottom vector is already covered by CVE-2006-6042.
Phpwebthings Phpwebthings 1.5.2
1 EDB exploit
NA
CVE-2007-0135
PHP remote file inclusion vulnerability in inc/init.inc.php in Aratix 0.2.2 beta 11 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the current_path parameter.
Aratix Aratix
1 EDB exploit
NA
CVE-2006-6790
Direct static code injection vulnerability in chat/login.php in Ultimate PHP Board (UPB) 2.0b1 and previous versions allows remote malicious users to inject arbitrary PHP code via the username parameter, which is injected into chat/text.php.
Ultimate Php Board Ultimate Php Board
1 EDB exploit
NA
CVE-2006-6796
PHP remote file inclusion vulnerability in admin/admin_settings.php in MTCMS 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the ins_file parameter.
Mtcms Mtcms
1 EDB exploit
NA
CVE-2006-6770
Multiple PHP remote file inclusion vulnerabilities in Jinzora Media Jukebox 2.7 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the include_path parameter in (1) popup.php, (2) rss.php, (3) ajax_requ...
Jinzora Jinzora 2.0.1
Jinzora Jinzora
1 EDB exploit
NA
CVE-2006-6771
Multiple PHP remote file inclusion vulnerabilities in Irokez CMS 0.7.1 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) GLOBALS[PTH][func] parameter in (a) scripts/gallery.scr.php; the (2) GLO...
Irokez Irokez Cms
2 EDB exploits
NA
CVE-2006-6760
Multiple PHP remote file inclusion vulnerabilities in template.php in Phpmymanga 0.8.1 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) actionsPage or (2) formPage parameter.
Phpmymanga Phpmymanga 0.5
Phpmymanga Phpmymanga 0.8
Phpmymanga Phpmymanga
Phpmymanga Phpmymanga 0.6
Phpmymanga Phpmymanga 0.7
1 EDB exploit
NA
CVE-2006-6740
Multiple PHP remote file inclusion vulnerabilities in phpProfiles 3.1.2b and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the menu parameter to (1) include/body.inc.php or (2) include/body_admin.inc.php; or a URL in the incpath paramet...
Phpprofiles Phpprofiles 2.1
Phpprofiles Phpprofiles
1 EDB exploit
NA
CVE-2006-6739
PHP remote file inclusion vulnerability in buycd.php in Paristemi 0.8.3 allows remote malicious users to execute arbitrary PHP code via a URL in the HTTP_DOCUMENT_ROOT parameter, a different vector than CVE-2006-6689.
Paristemi Paristemi 0.8.3
1 EDB exploit
NA
CVE-2006-6720
PHP remote file inclusion vulnerability in admin/index_sitios.php in Azucar CMS 1.3 allows remote malicious users to execute arbitrary PHP code via a URL in the _VIEW parameter.
Azucar Cms Azucar Cms 1.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »