Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bd0rk vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2007-1934
Directory traversal vulnerability in member.php in the eBoard 1.0.7 module for PHP-Nuke allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the GLOBALS[name] parameter.
Php-nuke Eboard Module 1.0.7
1 EDB exploit
755
VMScore
CVE-2007-1983
PHP remote file inclusion vulnerability in include/default_header.php in Cyboards PHP Lite 1.21 allows remote malicious users to execute arbitrary PHP code via a URL in the script_path parameter, a different vector than CVE-2006-2871.
Cyboards Cyboards Php Lite 1.21
1 EDB exploit
505
VMScore
CVE-2009-5093
Directory traversal vulnerability in gastbuch.php in Gästebuch (Gastebuch) 1.6 allows remote malicious users to read arbitrary files via a .. (dot dot) in the start parameter.
Php4scripte Gastebuch 1.6
1 EDB exploit
685
VMScore
CVE-2009-5095
PHP remote file inclusion vulnerability in index_inc.php in ea gBook 0.1 and 0.1.4 allows remote malicious users to execute arbitrary PHP code via a URL in the inc_ordner parameter.
Ea-style Gbook 0.1
Ea-style Gbook 0.1.4
1 EDB exploit
755
VMScore
CVE-2007-1340
PHP remote file inclusion vulnerability in eintrag.php in Weltennetz News-Letterman 1.1 allows remote malicious users to execute arbitrary PHP code via a URL in the sqllog parameter.
Weltennetz News-letterman 1.1
1 EDB exploit
755
VMScore
CVE-2007-2313
PHP remote file inclusion vulnerability in getinfo1.php in the Shotcast 1.0 RC2 module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mx Shotcast 1.0 Rc2
1 EDB exploit
685
VMScore
CVE-2007-0489
PHP remote file inclusion vulnerability in includes/functions.visohotlink.php in VisoHotlink 1.01 and possibly earlier allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Visohotlink Visohotlink
1 EDB exploit
685
VMScore
CVE-2007-2189
PHP remote file inclusion vulnerability in admin/admin_album_otf.php in the MX Smartor Full Album Pack (FAP) 2.0 RC1 module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Mx Smartor Full Album Pack 2.1 Rc1
1 EDB exploit
755
VMScore
CVE-2007-1961
PHP remote file inclusion vulnerability in mutant_functions.php in the Mutant 0.9.2 portal for phpBB 2.2 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Mutant 0.9.2
1 EDB exploit
755
VMScore
CVE-2002-1656
X-News (x_news) 1.1 and previous versions allows malicious users to authenticate as other users by obtaining the MD5 checksum of the password, e.g. via sniffing or the users.txt data file, and providing it in a cookie.
Xqus X-news 1.1
Xqus X-news 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »