Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crackers_child vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-6229
PHP remote file inclusion vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the CFG[site][project_path] parameter.
Rayzz Rayzz Script 2.0
1 EDB exploit
755
VMScore
CVE-2007-6230
Directory traversal vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the CFG[site][project_path] parameter.
Rayzz Rayzz Script 2.0
1 EDB exploit
755
VMScore
CVE-2006-5251
PHP remote file inclusion vulnerability in index.php in Deep CMS 2.0a allows remote malicious users to execute arbitrary PHP code via a URL in the ConfigDir parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Deep Cms Deep Cms 2.0a
1 EDB exploit
685
VMScore
CVE-2007-4384
Multiple PHP remote file inclusion vulnerabilities in depouilg.php3 in Stephane Pineau VOTE 1c allow remote malicious users to execute arbitrary PHP code via a URL in the (1) NomVote and (2) FilePalHex parameters.
Stephane Pineau Vote 1c
1 EDB exploit
435
VMScore
CVE-2008-0688
Cross-site scripting (XSS) vulnerability in catalog.php in Smartscript Domain Trader 2.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter in a viewcategory action.
Smartscript Domain Trader 2.0
1 EDB exploit
755
VMScore
CVE-2008-0907
SQL injection vulnerability in the Inhalt module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Php-nuke Inhalt Module
1 EDB exploit
755
VMScore
CVE-2008-4176
SQL injection vulnerability in izle.asp in FoT Video scripti 1.1 beta allows remote malicious users to execute arbitrary SQL commands via the oyun parameter.
Asp Indir Fot Video Scripti 1.1
1 EDB exploit
755
VMScore
CVE-2007-3271
PHP remote file inclusion vulnerability in templates/2blue/bodyTemplate.php in YourFreeScreamer 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the serverPath parameter.
Yourfreescreamer Yourfreescreamer 1.0
1 EDB exploit
685
VMScore
CVE-2007-3449
SQL injection vulnerability in member.php in 6ALBlog allows remote malicious users to execute arbitrary SQL commands via the newsid parameter.
Gorani Network 6alblog
1 EDB exploit
645
VMScore
CVE-2008-6736
Flat Calendar 1.1 does not properly restrict access to administrative functions, which allows remote malicious users to (1) add new events via calAdd.php, as reachable from admin/add.php, or (2) delete events via admin/deleteEvent.php. NOTE: this is only a vulnerability when the ...
Circulargenius Flat Calendar 1.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »