Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nuffsaid vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6740
Multiple PHP remote file inclusion vulnerabilities in phpProfiles 3.1.2b and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the menu parameter to (1) include/body.inc.php or (2) include/body_admin.inc.php; or a URL in the incpath paramet...
Phpprofiles Phpprofiles 2.1
Phpprofiles Phpprofiles
1 EDB exploit
NA
CVE-2006-6790
Direct static code injection vulnerability in chat/login.php in Ultimate PHP Board (UPB) 2.0b1 and previous versions allows remote malicious users to inject arbitrary PHP code via the username parameter, which is injected into chat/text.php.
Ultimate Php Board Ultimate Php Board
1 EDB exploit
NA
CVE-2006-5730
PHP remote file inclusion vulnerability in manager/media/browser/mcpuk/connectors/php/Commands/Thumbnail.php in Modx CMS 0.9.2.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the base_path parameter. NOTE: it is possible that this ...
Modxcms Modxcms 0.9.1
Modxcms Modxcms
1 EDB exploit
NA
CVE-2007-3141
PHP remote file inclusion vulnerability in core/editor.php in phpWebThings 1.5.2 allows remote malicious users to execute arbitrary PHP code via a URL in the editor_insert_top parameter. NOTE: the editor_insert_bottom vector is already covered by CVE-2006-6042.
Phpwebthings Phpwebthings 1.5.2
1 EDB exploit
NA
CVE-2006-5433
PHP remote file inclusion vulnerability in modules/guestbook/index.php in ALiCE-CMS 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the CONFIG[local_root] parameter.
Timm Maass Alice Cms 0.1
1 EDB exploit
NA
CVE-2006-5497
PHP remote file inclusion vulnerability in themes/program/themesettings.inc.php in Segue CMS 1.5.8 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the themesdir parameter.
Middlebury College Segue Cms
1 EDB exploit
NA
CVE-2006-6760
Multiple PHP remote file inclusion vulnerabilities in template.php in Phpmymanga 0.8.1 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) actionsPage or (2) formPage parameter.
Phpmymanga Phpmymanga 0.5
Phpmymanga Phpmymanga 0.8
Phpmymanga Phpmymanga
Phpmymanga Phpmymanga 0.6
Phpmymanga Phpmymanga 0.7
1 EDB exploit
NA
CVE-2006-6770
Multiple PHP remote file inclusion vulnerabilities in Jinzora Media Jukebox 2.7 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the include_path parameter in (1) popup.php, (2) rss.php, (3) ajax_requ...
Jinzora Jinzora 2.0.1
Jinzora Jinzora
1 EDB exploit
NA
CVE-2006-6796
PHP remote file inclusion vulnerability in admin/admin_settings.php in MTCMS 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the ins_file parameter.
Mtcms Mtcms
1 EDB exploit
NA
CVE-2006-6710
Multiple PHP remote file inclusion vulnerabilities in PgmReloaded 0.8.5 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) lang parameter to (a) index.php, the (2) CFG[libdir] and (3) CFG[localedir] parameters to (b) common.inc.p...
Matteolucarelli Pgmreloaded
Matteolucarelli Pgmreloaded 0.7.1
Matteolucarelli Pgmreloaded 0.7
Matteolucarelli Pgmreloaded 0.8.2
Matteolucarelli Pgmreloaded 0.8.1
Matteolucarelli Pgmreloaded 0.5
Matteolucarelli Pgmreloaded 0.8
Matteolucarelli Pgmreloaded 0.7.3
Matteolucarelli Pgmreloaded 0.8.4
Matteolucarelli Pgmreloaded 0.8.3
Matteolucarelli Pgmreloaded 0.6.2
Matteolucarelli Pgmreloaded 0.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »