Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
the tiger vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1941
PAD Site Scripts 3.6 stores sensitive information under the web document root with insufficient access control, which allows remote malicious users to download the database and obtain sensitive information via a direct request for dbbackup.txt.
Phpeasycode Pad Site Scripts 3.6
1 EDB exploit
NA
CVE-2007-1778
PHP remote file inclusion vulnerability in db/mysql.php in the Eve-Nuke 0.1 (EN-Forums) module for PHP-Nuke allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Eve-nuke Eve-nuke Forum 0.1
1 EDB exploit
NA
CVE-2007-2575
PHP remote file inclusion vulnerability in watermark.php in the vm (aka Jean-Francois Laflamme) watermark 0.4.1 mod for Gallery allows remote malicious users to execute arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter.
Vm Watermark Vm Watermark 0.4.1
1 EDB exploit
NA
CVE-2007-4806
PHP remote file inclusion vulnerability in modules/Discipline/CategoryBreakdownTime.php in Focus/SIS 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the FocusPath parameter.
Focus Sis Focus Sis 2.2
Focus Sis Focus Sis 1.0
1 EDB exploit
NA
CVE-2007-2204
Multiple PHP remote file inclusion vulnerabilities in GPL PHP Board (GPB) unstable-2001.11.14-1 allow remote malicious users to execute arbitrary PHP code via a URL in the root_path parameter to (1) db.mysql.inc.php or (2) gpb.inc.php in include/, or the (3) theme parameter to th...
Gpl Php Board Gpl Php Board 2001-11-14 1
1 EDB exploit
NA
CVE-2007-2527
Multiple PHP remote file inclusion vulnerabilities in DynamicPAD prior to 1.03.31 allow remote malicious users to execute arbitrary PHP code via a URL in the HomeDir parameter to (1) dp_logs.php or (2) index.php.
Dynamicpad Dynamicpad 1.02
1 EDB exploit
NA
CVE-2007-2596
PHP remote file inclusion vulnerability in common/func.php in aForum 1.32 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the CommonAbsDir parameter.
Agner Fog Aforum
1 EDB exploit
NA
CVE-2007-2663
PHP remote file inclusion vulnerability in language/1/splash.lang.php in Beacon 0.2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the languagePath parameter.
Beacon Beacon 0.2.0
1 EDB exploit
NA
CVE-2007-2706
PHP remote file inclusion vulnerability in maint/ftpmedia.php in Media Gallery 1.4.8a and previous versions for Geeklog allows remote malicious users to execute arbitrary PHP code via a URL in the _MG_CONF[path_html] parameter.
Geeklog Media Gallery
1 EDB exploit
NA
CVE-2007-4807
Multiple PHP remote file inclusion vulnerabilities in Focus/SIS 2.2 allow remote malicious users to execute arbitrary PHP code via a URL in the staticpath parameter to (1) modules/Discipline/CategoryBreakdownTime.php or (2) modules/Discipline/StudentFieldBreakdown.php.
Focus Sis Focus Sis 1.0
Focus Sis Focus Sis 2.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »