Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 3.0.4 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2006-5048
Multiple PHP remote file inclusion vulnerabilities in Security Images (com_securityimages) component 3.0.5 and previous versions for Joomla! allow remote malicious users to execute arbitrary code via a URL in the mosConfig_absolute_path parameter in (1) configinsert.php, (2) lang...
Waltercedric Com Securityimages
Waltercedric Com Securityimages 2.2.5
Waltercedric Com Securityimages 2.2.6
Waltercedric Com Securityimages 3.00
Waltercedric Com Securityimages 3.0.3
Waltercedric Com Securityimages 3.0.4
1 EDB exploit
9.3
CVSSv2
CVE-2007-1423
Multiple PHP remote file inclusion vulnerabilities in WORK system e-commerce 3.0.5 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the g_include parameter to include/include_top.php and certain other PHP scripts.
Work System E-commerce Work System E-commerce 3.0.41
Work System E-commerce Work System E-commerce 3.0.3
Work System E-commerce Work System E-commerce 3.0.5
Work System E-commerce Work System E-commerce 3.0.4
1 EDB exploit
7.5
CVSSv2
CVE-2005-0511
misc.php for vBulletin 3.0.6 and previous versions, when "Add Template Name in HTML Comments" is enabled, allows remote malicious users to execute arbitrary PHP code via nested variables in the template parameter.
Jelsoft Vbulletin 2.2.0
Jelsoft Vbulletin 3.0.4
Jelsoft Vbulletin 3.0.0 Rc4
Jelsoft Vbulletin 2.3.0
Jelsoft Vbulletin 3.0.1
Jelsoft Vbulletin 2.2.9 Can
Jelsoft Vbulletin 3.0.0 Beta 2
Jelsoft Vbulletin 3.0.6
Jelsoft Vbulletin 2.2.1
Jelsoft Vbulletin 2.0.2
Jelsoft Vbulletin 2.0
Jelsoft Vbulletin 2.0.1
Jelsoft Vbulletin 2.2.7
Jelsoft Vbulletin 3.0.0 Can4
Jelsoft Vbulletin 2.0 Beta 2
Jelsoft Vbulletin 2.2.4
Jelsoft Vbulletin 3.0 Beta 2
Jelsoft Vbulletin 2.2.2
Jelsoft Vbulletin 2.2.5
Jelsoft Vbulletin 2.0 Beta 3
Jelsoft Vbulletin 3.0.0
Jelsoft Vbulletin 2.2.6
2 EDB exploits
10
CVSSv2
CVE-2001-1011
index2.php in Mambo Site Server 3.0.0 up to and including 3.0.5 allows remote malicious users to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters.
Mambo Mambo Site Server 3.0.4
Mambo Mambo Site Server 3.0.3
Mambo Mambo Site Server 3.0
Mambo Mambo Site Server 3.0.5
Mambo Mambo Site Server 3.0.1
Mambo Mambo Site Server 3.0.2
7.5
CVSSv2
CVE-2004-1515
SQL injection vulnerability in (1) ttlast.php and (2) last10.php in vBulletin 3.0.x allows remote malicious users to execute arbitrary SQL statements via the fsel parameter, as demonstrated using last.php.
Jelsoft Vbulletin 3.0.4
Jelsoft Vbulletin 3.0.0 Rc4
Jelsoft Vbulletin 3.0.1
Jelsoft Vbulletin 3.0.0 Beta 2
Jelsoft Vbulletin 3.0.6
Jelsoft Vbulletin 3.0.0 Can4
Jelsoft Vbulletin 3.0 Beta 2
Jelsoft Vbulletin 3.0.0
Jelsoft Vbulletin 3.0.2
Jelsoft Vbulletin 3.0.3
Jelsoft Vbulletin 3.0.5
1 EDB exploit
7.5
CVSSv2
CVE-2013-4557
The Security Screen (_core_/securite/ecran_securite.php) prior to 1.1.8 for SPIP, as used in SPIP 3.0.x prior to 3.0.12, allows remote malicious users to execute arbitrary PHP via the connect parameter.
Spip Spip 3.0.3
Spip Spip 3.0.8
Spip Spip 3.0.4
Spip Spip 3.0.7
Spip Spip 3.0.5
Spip Spip 3.0.10
Spip Spip 3.0.9
Spip Spip 3.0.2
Spip Spip 3.0.0
Spip Spip 3.0.6
Spip Spip 3.0.11
Spip Spip 3.0.1
7.5
CVSSv2
CVE-2016-2403
Symfony prior to 2.8.6 and 3.x prior to 3.0.6 allows remote malicious users to bypass authentication by logging in with an empty password and valid username, which triggers an unauthenticated bind.
Sensiolabs Symfony 3.0.5
Sensiolabs Symfony 3.0.2
Sensiolabs Symfony 2.8.0
Sensiolabs Symfony 2.8.4
Sensiolabs Symfony 2.8.3
Sensiolabs Symfony 3.0.1
Sensiolabs Symfony 2.8.1
Sensiolabs Symfony 3.0.0
Sensiolabs Symfony 2.8.5
Sensiolabs Symfony 3.0.3
Sensiolabs Symfony 3.0.4
Sensiolabs Symfony 2.8.2
7.5
CVSSv2
CVE-2021-40940
Monstra 3.0.4 does not filter the case of php, which leads to an unrestricted file upload vulnerability.
Monstra Monstra
7.5
CVSSv2
CVE-2012-4343
Multiple unspecified vulnerabilities in Gallery 3 prior to 3.0.4 allow malicious users to execute arbitrary PHP code via unknown vectors.
Menalto Gallery 3.0.1
Menalto Gallery 3.0
Menalto Gallery
Menalto Gallery 3.0.2
7.5
CVSSv2
CVE-2006-6041
Multiple PHP remote file inclusion vulnerabilities in Laurent Van den Reysen WORK system e-commerce 3.0.2, and other versions prior to 3.0.4, allow remote malicious users to execute arbitrary PHP code via a URL in the g_include parameter to (1) index.php, (2) module/forum/forum.p...
Laurent Van Den Reysen Work System E-commerce
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267
XML injection
CVE-2024-37673
CVE-2024-6266
CVE-2024-30078
arbitrary
CVE-2024-36886
CVE-2024-5346
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »