Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cold zero vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6057
Doug Luxem Liberum Help Desk 0.97.3 stores db/helpdesk2000.mdb under the web root with insufficient access control, which allows remote malicious users to obtain passwords via a direct request.
Liberum Liberum Help Desk 0.97.3
1 EDB exploit
NA
CVE-2008-6334
Directory traversal vulnerability in download.php in eMetrix Extract Website allows remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter.
Emetrix Extract Website -
1 EDB exploit
NA
CVE-2008-6335
Directory traversal vulnerability in download.php in eMetrix Online Keyword Research Tool allows remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter.
Emetrix Online Keyword Research Tool -
1 EDB exploit
NA
CVE-2008-0251
Unrestricted file upload vulnerability in PhotoPost vBGallery prior to 2.4.2 allows remote malicious users to upload and execute arbitrary files via unknown vectors.
Photopost Photopost Vbgallery
1 EDB exploit
NA
CVE-2007-4817
Unrestricted file upload vulnerability in the Restaurante (com_restaurante) component for Joomla! allows remote malicious users to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .php.jpg, which creates an accessibl...
Detodas Restaurante Component For Joomla
1 EDB exploit
NA
CVE-2007-4952
SQL injection vulnerability in article.php in OmniStar Article Manager allows remote malicious users to execute arbitrary SQL commands via the page_id parameter in a favorite op action, a different vector than CVE-2006-5917.
Omnistar Interactive Omnistar Article Manager
1 EDB exploit
NA
CVE-2006-5841
Multiple PHP remote file inclusion vulnerabilities in dodosmail.php in DodosMail 2.0.1 and previous versions, and possibly 2.1, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) dodosmail_header_file or (2) dodosmail_footer_file parameters.
Dodos Scripts Dodosmail 2.0.1
Dodos Scripts Dodosmail
Dodos Scripts Dodosmail 2.0
1 EDB exploit
NA
CVE-2007-4953
SQL injection vulnerability in index.php in SimpCMS allows remote malicious users to execute arbitrary SQL commands via the keyword parameter in a search site action.
Simpcms Simpcms
1 EDB exploit
NA
CVE-2008-0230
PHP remote file inclusion vulnerability in php121db.php in osDate 2.0.8 and possibly earlier versions allows remote malicious users to execute arbitrary PHP code via a URL in the php121dir parameter.
Osdate Osdate 2.0.8
1 EDB exploit
NA
CVE-2006-3317
PHP remote file inclusion vulnerability in phpRaid 3.0.6 allows remote malicious users to execute arbitrary code via a URL in the phpraid_dir parameter to (1) announcements.php and (2) rss.php, a different set of vectors and affected versions than CVE-2006-3316 and CVE-2006-3116.
Spiffyjr Phpraid 3.0.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »