Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mhz91 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0431
Directory traversal vulnerability in administrator/download.php in IDMOS (aka Phoenix) 1.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the fileName parameter.
Idmos Idmos Cms 1.0
1 EDB exploit
NA
CVE-2008-0803
Multiple PHP remote file inclusion vulnerabilities in LookStrike Lan Manager 0.9 allow remote malicious users to execute arbitrary PHP code via a URL in the sys_conf[path][real] parameter to (1) modules\class\Table.php; (2) db_admins.php, (3) db_alert.php, (4) db_double.php, (5) ...
Lookstrike Lan Manager 0.9
1 EDB exploit
NA
CVE-2007-6551
SQL injection vulnerability in showMsg.php in MailMachine Pro 2.2.4, and other versions prior to 2.2.6, allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mailmachinepro Mailmachine Pro 1.0
Mailmachinepro Mailmachine Pro 2.1
Mailmachinepro Mailmachine Pro 2.0
Mailmachinepro Mailmachine Pro
Mailmachinepro Mailmachine Pro 2.2.4
1 EDB exploit
NA
CVE-2007-6579
Multiple SQL injection vulnerabilities in Ip Reg 0.3 allow remote malicious users to execute arbitrary SQL commands via the vlan_id parameter to (1) vlanview.php, (2) vlanedit.php, and (3) vlandel.php; the (4) assetclassgroup_id parameter to assetclassgroupview.php; the (5) subne...
Ip Reg Ip Reg 0.3
1 EDB exploit
NA
CVE-2007-6581
Multiple directory traversal vulnerabilities in Social Engine 2.0 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the global_lang parameter to (1) header_album.php, (2) header_blog.php, or (3) header_group.php; or (4) admin_header_a...
Social Engine Social Engine 2.0
1 EDB exploit
NA
CVE-2007-6614
PHP remote file inclusion vulnerability in admin/frontpage_right.php in Agares Media phpAutoVideo 2.21 allows remote malicious users to execute arbitrary PHP code via a URL in the loadadminpage parameter, a related issue to CVE-2007-6542.
Agares Media Phpautovideo 2.21
1 EDB exploit
NA
CVE-2007-6615
Directory traversal vulnerability in includes/block.php in Agares Media phpAutoVideo 2.21 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the selected_provider parameter.
Agares Media Phpautovideo 2.21
1 EDB exploit
NA
CVE-2007-4809
Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League (OFFL) 0.2.6 allow remote malicious users to execute arbitrary PHP code via a URL in the DOC_ROOT parameter to (1) lib/functions.php or (2) lib/header.php.
Online Fantasy Football League Offl 0.2.3
Online Fantasy Football League Offl 0.2.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3