Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 1.0 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2003-1401
login.php in php-Board 1.0 stores plaintext passwords in $username.txt with insufficient access control under the web document root, which allows remote malicious users to obtain sensitive information via a direct request.
Php Board Php Board 1.0
1 EDB exploit
NA
CVE-2016-15031
A vulnerability was found in PHP-Login 1.0. It has been declared as critical. This vulnerability affects the function checkLogin of the file login/scripts/class.loginscript.php of the component POST Parameter Handler. The manipulation of the argument myusername leads to sql injec...
Php-login Project Php-login 1.0
NA
CVE-2021-35284
SQL Injection vulnerability in function get_user in login_manager.php in rizalafani cms-php v1.
Cms-php Project Cms-php 1.0
4.3
CVSSv2
CVE-2012-5315
Multiple cross-site scripting (XSS) vulnerabilities in php ireport 1.0 allow remote malicious users to inject arbitrary web script or HTML via the message parameter to (1) messages_viewer.php, (2) home.php, or (3) history.php.
Php Ireport Project Php Ireport 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-2346
Multiple PHP remote file inclusion vulnerabilities in PHP-Generics 1.0 beta allow remote malicious users to execute arbitrary PHP code via a URL in the _APP_RELATIVE_PATH parameter to (1) include.php, (2) dbcommon/include.php, and (3) exception/include.php.
Php-generics Php-generics 1.0 Beta
1 EDB exploit
7.5
CVSSv2
CVE-2022-26613
PHP-CMS v1.0 exists to contain a SQL injection vulnerability via the category parameter in categorymenu.php.
Php-cms Project Php-cms 1.0
5
CVSSv2
CVE-2020-18263
PHP-CMS v1.0 exists to contain a SQL injection vulnerability in the component search.php via the search parameter. This vulnerability allows malicious users to access sensitive database information.
Php-cms Project Php-cms 1.0
5.1
CVSSv2
CVE-2005-4154
Unspecified vulnerability in PEAR installer 1.4.2 and previous versions allows user-assisted malicious users to execute arbitrary code via a crafted package that can execute code when the pear command is executed or when the Web/Gtk frontend is loaded.
Php Pear 0.9
Php Pear 1.3.4
Php Pear 1.2.1
Php Pear 1.3.3.1
Php Pear 1.0.1
Php Pear 1.0
Php Pear 1.2
Php Pear 1.3
Php Pear 0.90
Php Pear 1.4.0
Php Pear 1.4.1
Php Pear 1.3.5
Php Pear 1.3.6
Php Pear 1.3.3
Php Pear
Php Pear 1.3.1
Php Pear 0.10
Php Pear 0.11
Php Pear 1.1
5
CVSSv2
CVE-2006-7133
Directory traversal vulnerability in upload/bin/download.php in Upload Tool for PHP 1.0 allows remote malicious users to read arbitrary files via (1) ".." sequences or (2) absolute pathnames in the filename parameter.
Php Upload Tool Php Upload Tool 1.0
1 EDB exploit
5
CVSSv2
CVE-2002-2276
Ultimate PHP Board (UPB) 1.0 allows remote malicious users to view the physical path of the message board via a direct request to add.php, which leaks the path in an error message.
Ultimate Php Board Ultimate Php Board 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »