Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1821
Ultimate PHP Board (UPB) 1.0 and 1.0b allows remote authenticated users to gain privileges and perform unauthorized actions via direct requests to (1) admin_members.php, (2) admin_config.php, (3) admin_cat.php, or (4) admin_forum.php.
Ultimate Php Board Ultimate Php Board 1.0 Beta
Ultimate Php Board Ultimate Php Board 1.0
7.5
CVSSv3
CVE-2020-18263
PHP-CMS v1.0 exists to contain a SQL injection vulnerability in the component search.php via the search parameter. This vulnerability allows malicious users to access sensitive database information.
Php-cms Project Php-cms 1.0
9.8
CVSSv3
CVE-2021-35284
SQL Injection vulnerability in function get_user in login_manager.php in rizalafani cms-php v1.
Cms-php Project Cms-php 1.0
NA
CVE-2012-5315
Multiple cross-site scripting (XSS) vulnerabilities in php ireport 1.0 allow remote malicious users to inject arbitrary web script or HTML via the message parameter to (1) messages_viewer.php, (2) home.php, or (3) history.php.
Php Ireport Project Php Ireport 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2022-26613
PHP-CMS v1.0 exists to contain a SQL injection vulnerability via the category parameter in categorymenu.php.
Php-cms Project Php-cms 1.0
9.8
CVSSv3
CVE-2016-15031
A vulnerability was found in PHP-Login 1.0. It has been declared as critical. This vulnerability affects the function checkLogin of the file login/scripts/class.loginscript.php of the component POST Parameter Handler. The manipulation of the argument myusername leads to sql injec...
Php-login Project Php-login 1.0
NA
CVE-2006-7133
Directory traversal vulnerability in upload/bin/download.php in Upload Tool for PHP 1.0 allows remote malicious users to read arbitrary files via (1) ".." sequences or (2) absolute pathnames in the filename parameter.
Php Upload Tool Php Upload Tool 1.0
1 EDB exploit
NA
CVE-2007-5308
SQL injection vulnerability in galerie.php in PHP Homepage M (phpHPm) 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter in a show action.
Php Homepage M Php Homepage M 1.0
1 EDB exploit
NA
CVE-2002-2276
Ultimate PHP Board (UPB) 1.0 allows remote malicious users to view the physical path of the message board via a direct request to add.php, which leaks the path in an error message.
Ultimate Php Board Ultimate Php Board 1.0
NA
CVE-2007-3281
Cross-site scripting (XSS) vulnerability in index.php in Php Hosting Biller 1.0 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Php Hosting Biller Php Hosting Biller 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »