Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cold zero vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2941
Multiple PHP remote file inclusion vulnerabilities in the creator in vBulletin Google Yahoo Site Map (vBGSiteMap) 2.41 for vBulletin allow remote malicious users to execute arbitrary PHP code via a URL in the base parameter to (1) vbgsitemap/vbgsitemap-config.php or (2) vbgsitema...
Michael Brandon Vbgsitemap 2.41
1 EDB exploit
NA
CVE-2007-3932
uploadimg.php in the Expose RC35 and previous versions (com_expose) component for Joomla! sends an error message but does not exit when it detects an attempt to upload a non-JPEG file, which allows remote malicious users to upload and execute arbitrary PHP code in the img/ folder...
Joomla Expose
1 EDB exploit
NA
CVE-2007-3583
SQL injection vulnerability in details_news.php in Girlserv ads 1.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the idnew parameter.
Girlserv Girlserv Ads
1 EDB exploit
NA
CVE-2007-4817
Unrestricted file upload vulnerability in the Restaurante (com_restaurante) component for Joomla! allows remote malicious users to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .php.jpg, which creates an accessibl...
Detodas Restaurante Component For Joomla
1 EDB exploit
NA
CVE-2007-4952
SQL injection vulnerability in article.php in OmniStar Article Manager allows remote malicious users to execute arbitrary SQL commands via the page_id parameter in a favorite op action, a different vector than CVE-2006-5917.
Omnistar Interactive Omnistar Article Manager
1 EDB exploit
NA
CVE-2007-2044
PHP remote file inclusion vulnerability in mod_weather.php in the Antonis Ventouris Weather module for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the absolute_path parameter.
Antonis Ventouris Weather Module
1 EDB exploit
NA
CVE-2007-2049
Multiple PHP remote file inclusion vulnerabilities in the Calendar Module (com_calendar) 1.5.5 for Mambo allow remote malicious users to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) com_calendar.php or (2) mod_calendar.php.
Mambo Mambo Calendar 1.5.5
1 EDB exploit
NA
CVE-2007-2144
PHP remote file inclusion vulnerability in includes/CAltInstaller.php in the JoomlaPack (com_jpack) 1.0.4a2 RE component for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Joomlapack Joomlapack 1.0.4a2 Re
1 EDB exploit
NA
CVE-2007-2317
Multiple PHP remote file inclusion vulnerabilities in MiniBB Forum 1.5a and previous versions, as used by TOSMO/Mambo 4.0.12 and probably other products, allow remote malicious users to execute arbitrary PHP code via a URL in the absolute_path parameter to bb_plugins.php in (1) c...
Minibb Minibb
Tosmo Mambo Tosmo Mambo
1 EDB exploit
NA
CVE-2007-2319
PHP remote file inclusion vulnerability in the AutoStand 1.1 and previous versions module for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to mod_as_category.php in (1) modules/mod_as_category/ or (2) modul...
Autostand Category Autostand Category
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »