Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
runvirus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0974
Cross-site scripting (XSS) vulnerability in failure.asp in Battleaxe bttlxeForum 2.0 allows remote malicious users to inject arbitrary web script or HTML via the err_txt parameter.
Battleaxe Software Bttlxeforum 2.0
1 EDB exploit
NA
CVE-2007-0178
PHP remote file inclusion vulnerability in info.php in Easy Banner Pro 2.8 allows remote malicious users to execute arbitrary PHP code via a URL in the s[phppath] parameter.
Php Web Scripts Easy Banner Pro 2.8
1 EDB exploit
NA
CVE-2007-3332
Directory traversal vulnerability in Satellite.php in Satel Lite for PhpNuke allows remote malicious users to read arbitrary files via a .. (dot dot) sequence in the name parameter in a modload action.
Php-nuke Satel Lite
1 EDB exploit
NA
CVE-2006-1800
Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 up to and including 1.1 allows remote malicious users to include and execute arbitrary files via ".." sequences in the language cookie, as demonstrated by by injecting the code into the gl_session cookie ...
Simplemedia Simplebbs 1.0.6
Simplemedia Simplebbs 1.0.7
Simplemedia Simplebbs 1.1
1 EDB exploit
NA
CVE-2005-4423
Unrestricted file upload vulnerability in PHPFM prior to 0.2.3 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension to an accessible directory, as demonstrated using a file with a .php extension, aka "upload phpshell.&q...
1 EDB exploit
NA
CVE-2005-2560
Cross-site scripting (XSS) vulnerability in index.cfm in CFBB 1.1.0 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
1 EDB exploit
NA
CVE-2006-5118
PHP remote file inclusion vulnerability in index.php3 in the PDD package for PHPSelect Web Development Division allows remote malicious users to execute arbitrary PHP code via a URL in the Application_Root parameter.
Phpselect Web Development Division
1 EDB exploit
NA
CVE-2005-2318
Cross-site scripting (XSS) vulnerability in showerr.asp in DVBBS 7.1 SP2 allows remote malicious users to inject arbitrary web script or HTML via the action parameter.
Dvbbs Dvbbs 7.1 Sp2
Dvbbs Dvbbs 7.1
1 EDB exploit
NA
CVE-2007-3196
SQL injection vulnerability in vBSupport.php in vSupport Integrated Ticket System 3.x.x allows remote malicious users to execute arbitrary SQL commands via the ticketid parameter in a showticket action.
Jelsoft Vbsupport Integrated Ticket System 2.0.0 Beta 1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started