Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nukedx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2740
Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote malicious users to execute arbitrary SQL commands via the (1) q parameter in (a) forgot.php, and the (2) username and (3) password parameters in (b) login.php, and other unspecified vectors.
Epic Designs Tinybb
1 EDB exploit
NA
CVE-2006-2745
Multiple PHP remote file inclusion vulnerabilities in F@cile Interactive Web 0.8.5 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) pathfile parameter in (a) p-editpage.php and (b) p-editbox.p...
Facile Interactive Web Facile Interactive Web 0.8.41
Facile Interactive Web Facile Interactive Web
1 EDB exploit
NA
CVE-2006-0175
Cross-site scripting (XSS) vulnerability in search_form.asp in Web Wiz Forums 6.34 allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
Webwiz Web Wiz Forums 6.34
1 EDB exploit
NA
CVE-2006-1994
PHP remote file inclusion vulnerability in dForum 1.5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the DFORUM_PATH parameter to (1) about.php, (2) admin.php, (3) anmelden.php, (4) losethread.php, (5) config.php, (6) delpost.php, (...
Dforum Dforum 1.5
1 EDB exploit
NA
CVE-2006-2028
Cross-site scripting (XSS) vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal.
Simplog Simplog
1 EDB exploit
NA
CVE-2006-2032
Multiple SQL injection vulnerabilities in Core CoreNews 2.0.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) icon_id and (2) userid parameters in preview.php.
Corenews Corenews
1 EDB exploit
NA
CVE-2006-1333
Multiple SQL injection vulnerabilities in BetaParticle Blog 6.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to template_permalink.asp or (2) fldGalleryID parameter to template_gallery_detail.asp.
Betaparticle Betaparticle Blog 6.0
Betaparticle Betaparticle Blog 3.0
Betaparticle Betaparticle Blog 4.0
Betaparticle Betaparticle Blog 5.0
1 EDB exploit
NA
CVE-2006-4369
Absolute path traversal vulnerability in includes/functions_portal.php in IntegraMOD Portal 2.x and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via an absolute pathname in the phpbb_root_path parameter.
Integramod Integramod Portal 2.0
1 EDB exploit
NA
CVE-2006-2485
PHP remote file inclusion vulnerability in includes/class_template.php in Quezza 1.0 and previous versions, and possibly 1.1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the quezza_root_path parameter.
Quezza Quezza Bb 1.1.0
Quezza Quezza Bb
1 EDB exploit
NA
CVE-2006-4365
Multiple PHP remote file inclusion vulnerabilities in VistaBB 2.0.33 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter in (1) includes/functions_mod_user.php or (2) includes/functions_portal.php.
Vistabb Vistabb
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »