Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dj7xpl vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1525
Direct static code injection vulnerability in postpost.php in Dayfox Blog (dfblog) 4 allows remote malicious users to execute arbitrary PHP code via the cat parameter, which can be executed via a request to posts.php.
Dayfox Designs Dayfox Blog 4
1 EDB exploit
NA
CVE-2007-3272
Directory traversal vulnerability in index.php in MiniBB 2.0.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the language parameter in a register action.
Minibb Minibb 2.0.5
1 EDB exploit
NA
CVE-2007-2574
Directory traversal vulnerability in index.php in Archangel Weblog 0.90.02 allows remote malicious users to read arbitrary files via a .. (dot dot) in the index parameter.
Archangelmgt Weblog 0.90.02
1 EDB exploit
NA
CVE-2007-2647
Static code injection vulnerability in admin/admin_configuration.php in Monalbum 0.8.7 allows remote authenticated users to inject arbitrary PHP code into the conf/config.inc.php file via the (1) gadm_pass, (2) gadm_user, (3) gcfgHote, (4) gcfgPass, (5) gcfgUser, (6) gclassement_...
Monalbum Monalbum 0.8.7
1 EDB exploit
NA
CVE-2007-2665
PHP remote file inclusion vulnerability in block.php in PhpFirstPost 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the Include parameter.
Php Firstpost Php Firstpost 0.1
1 EDB exploit
NA
CVE-2007-3403
Unrestricted file upload vulnerability in upload.php in dreamLog (aka dreamblog) 0.5 allows remote malicious users to upload and execute arbitrary PHP code in uploads/images/ via the uploadedFile[] parameter.
Dreamlog Dreamlog 0.5
1 EDB exploit
NA
CVE-2006-5612
PHP remote file inclusion vulnerability in aide.php3 (aka aide.php) in GestArt beta 1, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via the aide parameter.
Michel Pradel Gestart Beta 1
1 EDB exploit
NA
CVE-2007-2642
Directory traversal vulnerability in galeria.php in R2K Gallery 1.7 allows remote malicious users to read arbitrary files via a .. (dot dot) in the lang2 parameter.
R2k R2k Gallery 1.7
1 EDB exploit
NA
CVE-2007-2715
Admin/users.php in Snaps! Gallery 1.4.4 allows remote malicious users to change arbitrary usernames and passwords via the (1) username, or the (2) password and password2 parameters in an edit action.
Snaps Gallery Snaps Gallery 1.4.4
1 EDB exploit
NA
CVE-2007-2899
Direct static code injection vulnerability in admin_config.php in NavBoard 2.6.0 allows remote malicious users to inject arbitrary PHP code into data/config.php via multiple parameters, as demonstrated via the threadperpage parameter in an editconfig action.
Navboard Navboard 16
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »