Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
houssamix vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1308
SQL injection vulnerability in the Sudirman Angriawan NukeC30 3.0 module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the id_catg parameter in a ViewCatg action to modules.php.
Sudirman Angriawan Nukec30 3.0
1 EDB exploit
NA
CVE-2008-0425
Absolute path traversal vulnerability in explorerdir.php in Frimousse 0.0.2 allows remote malicious users to read arbitrary files and list arbitrary directories via a full pathname in the name parameter.
Frimousse Frimousse 0.0.2
1 EDB exploit
NA
CVE-2008-0490
SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Wordpress Wp Cal Plugin 0.3
1 EDB exploit
NA
CVE-2008-0149
TUTOS 1.3 allows remote malicious users to read system information via a direct request to php/admin/phpinfo.php, which calls the phpinfo function.
Tutos Tutos 1.3
1 EDB exploit
NA
CVE-2008-0222
Unrestricted file upload vulnerability in ajaxfilemanager.php in the Wp-FileManager 1.2 plugin for WordPress allows remote malicious users to upload and execute arbitrary PHP code via unspecified vectors.
Wordpress Filemanager 1.2
1 EDB exploit
NA
CVE-2008-0259
Multiple directory traversal vulnerabilities in _mg/php/mg_thumbs.php in minimal Gallery 0.8 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) thumbcat and (2) thumb parameters.
Minimal Design Minimal Gallery 0.8
1 EDB exploit
NA
CVE-2008-0283
PHP remote file inclusion vulnerability in /aides/index.php in DomPHP 0.81 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Domphp Domphp
1 EDB exploit
NA
CVE-2007-4979
SQL injection vulnerability in index.php in the sondages module in KwsPHP 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a results action, a different module than CVE-2007-4956.2.
Kwsphp Kwsphp 1.0
1 EDB exploit
NA
CVE-2008-0745
Directory traversal vulnerability in aides/index.php in DomPHP 0.82 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Domphp Domphp 0.82
1 EDB exploit
NA
CVE-2014-10037
Directory traversal vulnerability in DomPHP 0.83 and previous versions allows remote malicious users to have unspecified impact via a .. (dot dot) in the url parameter to photoalbum/index.php.
Domphp Domphp
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »