Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cold zero vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1699
Multiple PHP remote file inclusion vulnerabilities in the SWmenu (com_swmenupro and com_swmenufree) 4.0 component for Mambo and Joomla! allow remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to ImageManager/Classes/ImageManag...
Joomla Swmenu Component 4.0
Mambo Swmenu Component 4.0
1 EDB exploit
NA
CVE-2007-1702
PHP remote file inclusion vulnerability in mod_flatmenu.php in the Flatmenu 1.07 and previous versions Mambo module allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Mambo Flatmenu
1 EDB exploit
NA
CVE-2007-2005
Multiple PHP remote file inclusion vulnerabilities in the Taskhopper 1.1 component for Mambo and Joomla! allow remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to (1) contact_type.php, (2) itemstatus_type.php, (3) projectstat...
Joomla Taskhopper Component 1.1
Mambo Taskhopper Component 1.1
1 EDB exploit
NA
CVE-2008-6335
Directory traversal vulnerability in download.php in eMetrix Online Keyword Research Tool allows remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter.
Emetrix Online Keyword Research Tool -
1 EDB exploit
NA
CVE-2006-3317
PHP remote file inclusion vulnerability in phpRaid 3.0.6 allows remote malicious users to execute arbitrary code via a URL in the phpraid_dir parameter to (1) announcements.php and (2) rss.php, a different set of vectors and affected versions than CVE-2006-3316 and CVE-2006-3116.
Spiffyjr Phpraid 3.0.6
1 EDB exploit
NA
CVE-2006-5841
Multiple PHP remote file inclusion vulnerabilities in dodosmail.php in DodosMail 2.0.1 and previous versions, and possibly 2.1, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) dodosmail_header_file or (2) dodosmail_footer_file parameters.
Dodos Scripts Dodosmail 2.0.1
Dodos Scripts Dodosmail
Dodos Scripts Dodosmail 2.0
1 EDB exploit
NA
CVE-2008-0230
PHP remote file inclusion vulnerability in php121db.php in osDate 2.0.8 and possibly earlier versions allows remote malicious users to execute arbitrary PHP code via a URL in the php121dir parameter.
Osdate Osdate 2.0.8
1 EDB exploit
NA
CVE-2008-7088
Unrestricted file upload vulnerability in upload.php in PhotoPost vBGallery 2.4.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension followed by a safe extension, then accessing it via a direct request to the file in a cer...
Photopost Photopost Vbgallery 2.4.2
1 EDB exploit
NA
CVE-2007-4953
SQL injection vulnerability in index.php in SimpCMS allows remote malicious users to execute arbitrary SQL commands via the keyword parameter in a search site action.
Simpcms Simpcms
1 EDB exploit
NA
CVE-2008-6057
Doug Luxem Liberum Help Desk 0.97.3 stores db/helpdesk2000.mdb under the web root with insufficient access control, which allows remote malicious users to obtain passwords via a direct request.
Liberum Liberum Help Desk 0.97.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »