Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php live php live vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2394
Cross-site scripting (XSS) vulnerability in chat.php in PHP Live Helper allows remote malicious users to inject arbitrary web script or HTML via the PHPSESSID parameter.
Turnkey Web Tools Php Live Helper 1.8
NA
CVE-2006-1477
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools PHP Live Helper 1.8 allow remote malicious users to include and execute arbitrary PHP code via the abs_path parameter in (1) initiate.php, (2) waiting.php, (3) welcome.php, (4) admin/index.php, (5) javascript...
Turnkey Web Tools Php Live Helper 1.8
NA
CVE-2006-1478
Directory traversal vulnerability in (1) initiate.php and (2) possibly other PHP scripts in Turnkey Web Tools PHP Live Helper 1.8, and possibly later versions, allows remote authenticated users to include and execute arbitrary local files via directory traversal sequences in the ...
Turnkey Web Tools Php Live Helper 1.8
NA
CVE-2004-2602
PHP remote file inclusion vulnerability in UberTec Help Center Live (HCL) prior to 1.2.7 allows remote malicious users to execute arbitrary PHP code via a URL in the HCL_path parameter to pipe.php.
Ubertec Help Center Live 1.2.2
Ubertec Help Center Live 1.2.3
Ubertec Help Center Live 1.2.4
Ubertec Help Center Live 1.2.5
Ubertec Help Center Live 1.2.6
Ubertec Help Center Live 1.2.0
Ubertec Help Center Live 1.2.1
Ubertec Help Center Live 1.1
9.8
CVSSv3
CVE-2018-12426
The WP Live Chat Support Pro plugin prior to 8.0.07 for WordPress is vulnerable to unauthenticated Remote Code Execution due to client-side validation of allowed file types, as demonstrated by a v1/remote_upload request with a .php filename and the image/jpeg content type.
3cx Live Chat
NA
CVE-2004-2601
PHP remote file inclusion vulnerability in UberTec Help Center Live (HCL) allows remote malicious users to read local files and possibly execute PHP code via a URL in the SKIN_inner parameter to inc/skin.php.
Ubertec Help Center Live 1.2.6
NA
CVE-2005-3639
PHP file inclusion vulnerability in the osTicket module in Help Center Live prior to 2.0.3 allows remote malicious users to access or include arbitrary files via the file parameter, possibly due to a directory traversal vulnerability.
Ubertec Help Center Live
1 EDB exploit
NA
CVE-2011-3742
HelpCenter Live 2.1.7 allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/HelpCenter/index.php and certain other files.
Helpcenterlive Helpcenter Live 2.1.7
NA
CVE-2010-4858
Directory traversal vulnerability in team.rc5-72.php in DNET Live-Stats 0.8 allows remote malicious users to read arbitrary files via a .. (dot dot) in the showlang parameter.
Joerg Risse Dnet Live-stats 0.8
1 EDB exploit
NA
CVE-2014-1905
Unrestricted file upload vulnerability in ls/vw_snapshots.php in the VideoWhisper Live Streaming Integration plugin prior to 4.29.5 for WordPress allows remote malicious users to execute arbitrary PHP code by uploading a file with a double extension, and then accessing the file v...
Videowhisper Videowhisper Live Streaming Integration
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »