Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
limbo cms limbo cms vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-6564
Cross-site scripting (XSS) vulnerability in admin.php in Limbo CMS 1.0.4.2 allows remote malicious users to inject arbitrary web script or HTML via the com_option parameter.
Limbo Cms Limbo Cms 1.0.4.2
1 EDB exploit
6.8
CVSSv2
CVE-2006-6800
PHP remote file inclusion in eventcal/mod_eventcal.php in the event module 1.0 for Limbo CMS allows remote malicious users to execute arbitrary PHP code via a URL in the lm_absolute_path parameter.
Limbo Cms Event Module 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6078
SQL injection vulnerability in open.php in the Private Messaging (com_privmsg) component for Limbo CMS allows remote malicious users to execute arbitrary SQL commands via the id parameter in a pms action to index.php.
Limbo Cms Com Privmsg
1 EDB exploit
7.5
CVSSv2
CVE-2005-4318
SQL injection vulnerability in index.php in Limbo CMS 1.0.4.2 and previous versions, with register_globals off, allows remote malicious users to execute arbitrary SQL commands via the _SERVER[REMOTE_ADDR] parameter, which modifies the underlying $_SERVER variable.
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2