Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ahmadbady vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-6955
mxCamArchive 2.2 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain configuration details and passwords via a direct request for archive/config.ini.
Infireal Mxcamarchive 2.2
1 EDB exploit
435
VMScore
CVE-2008-3566
Cross-site scripting (XSS) vulnerability in ZoneO-soft freeForum 1.7 allows remote malicious users to inject arbitrary web script or HTML via the acuparam parameter to (1) the default URI or (2) index.php, or (3) the PATH_INFO to index.php. NOTE: the provenance of this informatio...
Zoneo-soft Freeforum 1.7
1 EDB exploit
685
VMScore
CVE-2009-0330
Directory traversal vulnerability in index.php in Simple Content Management System (SCMS) 1 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the p parameter.
Wss-pro Scms 1
1 EDB exploit
755
VMScore
CVE-2009-0456
PHP remote file inclusion vulnerability in examples/example_clientside_javascript.php in patForms, as used in Sourdough 0.3.5, allows remote malicious users to execute arbitrary PHP code via a URL in the neededFiles[patForms] parameter.
Sourdough Sourdough 0.3.5
1 EDB exploit
755
VMScore
CVE-2009-0457
Multiple directory traversal vulnerabilities in AJA Portal 1.2 allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the currentlang parameter to admin/case.php in the (1) Contact_Plus and (2) Reviews modules, and (3) the m...
Magtrb Aja Portal 1.2
1 EDB exploit
685
VMScore
CVE-2008-6492
Unrestricted file upload vulnerability in process.php in Tizag Countdown Creator 3 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension via index.php, then accessing the uploaded file via a direct request to the file in pics/. N...
Tizag Tizag Countdown Creator 3
1 EDB exploit
755
VMScore
CVE-2009-2112
Directory traversal vulnerability in include/page_bottom.php in phpFK 7.03 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the _FORUM[settings_design_style] parameter.
Frank-karau Phpfk 7.03
1 EDB exploit
435
VMScore
CVE-2008-5061
Cross-site scripting (XSS) vulnerability in php/cal_default.php in Mini Web Calendar (mwcal) 1.2 allows remote malicious users to inject arbitrary web script or HTML via the URL.
Smolinari Mini Web Calendar 1.2
1 EDB exploit
505
VMScore
CVE-2008-5062
Directory traversal vulnerability in php/cal_pdf.php in Mini Web Calendar (mwcal) 1.2 allows remote malicious users to read arbitrary files via directory traversal sequences in the thefile parameter.
Smolinari Mini Web Calendar 1.2
1 EDB exploit
685
VMScore
CVE-2009-2338
Directory traversal vulnerability in includes/startmodules.inc.php in FreeWebshop.org 2.2.9 R2, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang_file parameter.
Freewebshop Freewebshop 2.2.9
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »