Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2122
PHP remote file inclusion vulnerability in index.php in CoolMenus allows remote malicious users to execute arbitrary code via a URL in the page parameter. NOTE: the original report for this issue is probably erroneous, since CoolMenus does not appear to be written in PHP.
Coolmenus Coolmenus 4.0
1 EDB exploit
NA
CVE-2013-4812
UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the fileName argument, which allows remote malicious users to upload .jsp files and consequentl...
Hp Procurve Manager 3.20
Hp Procurve Manager 4.0
Hp Identity Driven Manager 4.0
1 EDB exploit
NA
CVE-2013-4811
UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the adCert argument, which allows remote malicious users to upload .jsp files and consequen...
Hp Identity Driven Manager 4.0
Hp Procurve Manager 3.20
Hp Procurve Manager 4.0
1 EDB exploit
NA
CVE-2006-7128
PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 RC1 allows remote malicious users to execute arbitrary PHP code via a URL in the website parameter.
Salims Softhouse Jaf Cms 4.0
2 EDB exploits
NA
CVE-2006-7127
Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 and 4.0 RC2 allow remote malicious users to execute arbitrary PHP code via a URL in the main_dir parameter to (1) forum/main.php and (2) forum/headlines.php.
Salims Softhouse Jaf Cms 4.0
2 EDB exploits
NA
CVE-2011-2595
Multiple stack-based buffer overflows in ACDSee FotoSlate 4.0 Build 146 allow remote malicious users to execute arbitrary code via a long id parameter in a (1) String or (2) Int tag in a FotoSlate Project (aka PLP) file.
Acdsee Fotoslate 4.0
1 EDB exploit
7.5
CVSSv3
CVE-2015-2073
The File RepositoRy Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote malicious users to read arbitrary files via a full pathname, aka SAP Note 2018682.
Sap Businessobjects Edge 4.0
7.5
CVSSv3
CVE-2015-2074
The File Repository Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote malicious users to write to arbitrary files via a full pathname, aka SAP Note 2018681.
Sap Businessobjects Edge 4.0
NA
CVE-2006-4870
Multiple PHP remote file inclusion vulnerabilities in AEDating 4.1, and possibly earlier versions, allow remote malicious users to execute arbitrary PHP code via a URL in the dir[inc] parameter in (1) inc/design.inc.php or (2) inc/admin_design.inc.php.
Aewebworks Aedating
Aewebworks Aedating 4.0
1 EDB exploit
NA
CVE-2006-2888
PHP remote file inclusion vulnerability in _wk/wk_lang.php in Wikiwig 4.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the WK[wkPath] parameter.
Wikiwig Wikiwig 4.0
Wikiwig Wikiwig 4.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »