Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crackers_child vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1812
PHP remote file inclusion vulnerability in utilitaires/gestion_sondage.php in BT-Sondage 112 allows remote malicious users to execute arbitrary PHP code via a URL in the repertoire_visiteur parameter.
Bt-sondage Bt-sondage 1.12
1 EDB exploit
NA
CVE-2007-6027
PHP remote file inclusion vulnerability in admin.jjgallery.php in the Carousel Flash Image Gallery (com_jjgallery) component for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Justjoomla Carousel Flash Image Gallery
1 EDB exploit
NA
CVE-2007-6129
Directory traversal vulnerability in scripts/include/show_content.php in Amber Script 1.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the id parameter. NOTE: in some environments, this can be leveraged for remote file inclusion...
Amber Script Amber Script 1.0
1 EDB exploit
NA
CVE-2007-6141
Cross-site scripting (XSS) vulnerability in vBTube.php in vBTube 1.1 Beta allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
Vbtube Vbtube 1.1 Beta
1 EDB exploit
NA
CVE-2007-6230
Directory traversal vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the CFG[site][project_path] parameter.
Rayzz Rayzz Script 2.0
1 EDB exploit
NA
CVE-2008-4719
PHP remote file inclusion vulnerability in cms/classes/openengine/filepool.php in openEngine 2.0 beta2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the oe_classpath parameter, a different vector than CVE-2008-4329.
Openengine Openengine 2.0
1 EDB exploit
NA
CVE-2008-4721
PHP Jabbers Post Comment 3.0 allows remote malicious users to bypass authentication and gain administrative access by setting the PostCommentsAdmin cookie to "logged."
Php Jabbers Post Comment 2.0
1 EDB exploit
NA
CVE-2008-6092
phpscripts Ranking Script allows remote malicious users to bypass authentication and gain administrative access by sending an admin=ja cookie.
Phpscripts Ranking-script -
1 EDB exploit
NA
CVE-2007-6139
PHP remote file inclusion vulnerability in index.php in Mp3 ToolBox 1.0 beta 5 allows remote malicious users to execute arbitrary PHP code via a URL in the skin_file parameter.
Mp3 Toolbox 1.0 Beta 5
1 EDB exploit
NA
CVE-2006-4241
PHP remote file inclusion vulnerability in processor/reporter.sql.php in the Reporter Mambo component (com_reporter) allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Mamboxchange Reporter 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »