Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dj7xpl vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5050
Directory traversal vulnerability in index.php in Neuron News 1.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the q parameter.
Neuron News Neuron News 1.0
1 EDB exploit
NA
CVE-2007-3630
changePW.php in AV Tutorial Script (avtutorial) 1.0 does not require authentication or knowledge of an old password for password changes, which allows remote malicious users to change passwords for arbitrary users via a modified password parameter.
Av Scripts Av Tutorial Script 1.0
1 EDB exploit
NA
CVE-2005-2412
PHP remote file inclusion vulnerability in block.php in PHP FirstPost allows remote malicious users to execute arbitrary PHP code via the Include parameter.
Php Firstpost Php Firstpost
1 EDB exploit
NA
CVE-2007-1908
PHP file inclusion vulnerability in php121db.php in PHP121 Instant Messenger 2.2 allows remote malicious users to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the php121dir parameter, which is accessed by the file_exists function.
Php121 Php121 Instant Messenger 2.2
1 EDB exploit
NA
CVE-2007-2145
The imagecomments function in classes.php in MiniGal b13 allows remote malicious users to inject arbitrary PHP code into a file in the thumbs/ directory via the input parameter. NOTE: some of these details are obtained from third party information.
Minigal Minigal B13
1 EDB exploit
NA
CVE-2007-2167
Static code injection vulnerability in process.php in AimStats 3.2 allows remote malicious users to inject PHP code into config.php via the number parameter in an update action.
Aimstats Aimstats 3.2
1 EDB exploit
NA
CVE-2007-2168
Static code injection vulnerability in process.php in AimStats 3.2 and previous versions allows remote malicious users to inject PHP code into config.php via the databasehost parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
Aimstats Aimstats
1 EDB exploit
NA
CVE-2007-2182
Unrestricted file upload vulnerability in forum_write.php in Maran PHP Forum allows remote malicious users to upload and execute arbitrary PHP files via a trailing %00 in a filename in the page parameter.
Maran Php Forum
1 EDB exploit
NA
CVE-2007-2184
Directory traversal vulnerability in imgsrv.php in jchit counter 1.0.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the acc parameter.
Jchit Counter 1.0.0
1 EDB exploit
NA
CVE-2007-2507
Directory traversal vulnerability in includes/download.php in Treble Designs 1024 CMS 0.7 allows remote malicious users to read arbitrary files via a .. (dot dot) in the item parameter.
Treble Designs 1024 Cms 0.7
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »