Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
staker vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2009-1936
_functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote malicious users to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PH...
Cpcommerce Project Cpcommerce
1 EDB exploit
755
VMScore
CVE-2008-3031
Directory traversal vulnerability in index.php in Simple PHP Agenda 2.2.4 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Simple Php Agenda Simple Php Agenda 2.2.0
Simple Php Agenda Simple Php Agenda 2.2.1
Simple Php Agenda Simple Php Agenda 2.0.0
Simple Php Agenda Simple Php Agenda 2.1.0
Simple Php Agenda Simple Php Agenda 2.2.2
Simple Php Agenda Simple Php Agenda 2.2.3
Simple Php Agenda Simple Php Agenda
1 EDB exploit
755
VMScore
CVE-2008-4524
SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Adaptcms Adaptcms 1.3
1 EDB exploit
785
VMScore
CVE-2008-5322
Wysi Wiki Wyg 1.0 allows remote malicious users to obtain system information via an invalid categup parameter to index.php, which calls the phpinfo function.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
755
VMScore
CVE-2009-0592
Multiple directory traversal vulnerabilities in PNphpBB2 1.2i and previous versions allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the ModName parameter to (1) admin_words.php, (2) admin_groups_reapir.php, (3) admin_smilies.php, (4...
Pnphpbb Pnphpbb2 1.2h
Pnphpbb Pnphpbb2 1.1a
Pnphpbb Pnphpbb2 1.1
Pnphpbb Pnphpbb2 1.2e
Pnphpbb Pnphpbb2 1.2d
Pnphpbb Pnphpbb2 1.2a
Pnphpbb Pnphpbb2 1.2
Pnphpbb Pnphpbb2 1.2g
Pnphpbb Pnphpbb2 1.2f
Pnphpbb Pnphpbb2 1.0
Pnphpbb Pnphpbb2
1 EDB exploit
755
VMScore
CVE-2006-0123
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote malicious users to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.
Adn Forum Adn Forum 1.0
Adn Forum Adn Forum 1.0b
1 EDB exploit
515
VMScore
CVE-2008-5418
Directory traversal vulnerability in login.php in the PunPortal module prior to 2.0 for PunBB allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the pun_user[language] parameter.
Justin Roy Punportal Module 1.0
1 EDB exploit
755
VMScore
CVE-2008-5491
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the pageID parameter.
Slimcms Slimcms
1 EDB exploit
755
VMScore
CVE-2008-5708
redirect.php in SlimCMS 1.0.0 does not require authentication, which allows remote malicious users to create administrative users by using the newusername and newpassword parameters and setting the newisadmin parameter to 1.
Slimcms Slimcms 1.0.0
1 EDB exploit
755
VMScore
CVE-2008-5737
SQL injection vulnerability in index.php in Nodstrum MySQL Calendar 1.1 and 1.2 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Nodstrum Mysql Calendar 1.2
Nodstrum Mysql Calendar 1.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »