Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 3.0.1 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2019-10015
baigoStudio baigoSSO v3.0.1 allows remote malicious users to execute arbitrary PHP code via the first form field of a configuration screen, because this code is written to the BG_SITE_NAME field in the opt_base.inc.php file.
Baigo Baigo Sso 3.0.1
6.5
CVSSv3
CVE-2018-20642
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 allows remote malicious users to cause a denial of service (outage of profile editing) via crafted JavaScript code in the KeySkills field.
Entrepreneur Job Portal Script Project Entrepreneur Job Portal Script 3.0.1
6.5
CVSSv3
CVE-2018-20643
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory.
Entrepreneur Job Portal Script Project Entrepreneur Job Portal Script 3.0.1
6.1
CVSSv3
CVE-2022-31402
ITOP v3.0.1 exists to contain a cross-site scripting (XSS) vulnerability via /itop/webservices/export-v2.php.
Combodo Itop 3.0.1
6.1
CVSSv3
CVE-2018-20639
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar.
Entrepreneur Job Portal Script Project Entrepreneur Job Portal Script 3.0.1
5.4
CVSSv3
CVE-2018-20640
PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting (XSS) via the Full Name field.
Entrepreneur Job Portal Script Project Entrepreneur Job Portal Script 3.0.1
5.4
CVSSv3
CVE-2018-14082
PHP Scripts Mall JOB SITE (aka Job Portal) 3.0.1 has Cross-site Scripting (XSS) via the search bar.
Freelancewebdesignerchennai Job Portal 3.0.1
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
NA
CVE-2015-8562
Joomla! 1.5.x, 2.x, and 3.x prior to 3.4.6 allow remote malicious users to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015.
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.17
Joomla Joomla\\! 1.5.18
Joomla Joomla\\! 1.5.25
Joomla Joomla\\! 1.5.26
Joomla Joomla\\! 1.6.0
Joomla Joomla\\! 1.7.0
Joomla Joomla\\! 1.7.1
Joomla Joomla\\! 2.5.2
Joomla Joomla\\! 2.5.3
Joomla Joomla\\! 2.5.11
Joomla Joomla\\! 2.5.12
Joomla Joomla\\! 2.5.19
Joomla Joomla\\! 2.5.20
Joomla Joomla\\! 2.5.27
Joomla Joomla\\! 2.5.28
Joomla Joomla\\! 3.1.3
Joomla Joomla\\! 3.1.4
Joomla Joomla\\! 3.2.4
Joomla Joomla\\! 3.3.0
2 EDB exploits
20 Github repositories
NA
CVE-2015-5646
Cybozu Garoon 3.x up to and including 3.7.5 and 4.x up to and including 4.0.3 allows remote authenticated users to execute arbitrary PHP code via unspecified vectors, aka CyVDB-863 and CyVDB-867.
Cybozu Garoon 3.0.0
Cybozu Garoon 3.7.0
Cybozu Garoon 3.7.1
Cybozu Garoon 3.7.2
Cybozu Garoon 3.7.3
Cybozu Garoon 3.0.1
Cybozu Garoon 3.0.3
Cybozu Garoon 3.1.1
Cybozu Garoon 3.5.2
Cybozu Garoon 3.5.4
Cybozu Garoon 3.7.5
Cybozu Garoon 4.0.1
Cybozu Garoon 3.1.2
Cybozu Garoon 3.1.3
Cybozu Garoon 3.5.0
Cybozu Garoon 3.5.1
Cybozu Garoon 4.0.2
Cybozu Garoon 4.0.3
Cybozu Garoon 3.0.2
Cybozu Garoon 3.1.0
Cybozu Garoon 3.5.3
Cybozu Garoon 3.5.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »