Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
darkfig vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5913
dirsys/modules/auth.php in JBC Explorer 7.20 RC1 and previous versions does not require authentication, which allows remote malicious users to (1) delete auth.inc.php via the suppr parameter, and (2) re-create the auth.inc.php file with contents that specify a new account name an...
Jean Charles Jbc Explorer
1 EDB exploit
NA
CVE-2006-5315
PHP remote file inclusion vulnerability in main.php in registroTL allows remote malicious users to execute arbitrary PHP code via an ftp:// URL in the page parameter.
Phplibre Registrotl 0.1b
Phplibre Registrotl 0.5b
1 EDB exploit
NA
CVE-2006-5316
registroTL stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for /usuarios.dat.
Phplibre Registrotl 0.1b
Phplibre Registrotl 0.5b
1 EDB exploit
NA
CVE-2006-5318
PHP remote file inclusion vulnerability in index.php in Nayco JASmine (aka Jasmine-Web) allows remote malicious users to execute arbitrary PHP code via an FTP URL in the section parameter.
Nayco Jasmine
1 EDB exploit
NA
CVE-2006-5319
Directory traversal vulnerability in redir.php in Foafgen 0.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the foaf parameter.
Toxi Foafgen 0.3
1 EDB exploit
NA
CVE-2006-5320
Directory traversal vulnerability in getimg.php in Album Photo Sans Nom 1.6 allows remote malicious users to read arbitrary files via the img parameter.
Morian Album Photo Sans Nom 1.6
1 EDB exploit
NA
CVE-2007-0093
SQL injection vulnerability in page.php in Simple Web Content Management System allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Cms-center Simple Web Cms
1 EDB exploit
NA
CVE-2007-0122
Multiple SQL injection vulnerabilities in Coppermine Photo Gallery 1.4.10 and previous versions allow remote authenticated administrators to execute arbitrary SQL commands via (1) the cat parameter to albmgr.php, and possibly (2) the gid parameter to usermgr.php; (3) the start pa...
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.0
Coppermine Coppermine Photo Gallery 1.2.2 B-nuke
Coppermine Coppermine Photo Gallery 1.3
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
Coppermine Coppermine Photo Gallery 1.4.9
Coppermine Coppermine Photo Gallery
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.3.4
Coppermine Coppermine Photo Gallery 1.4.4
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.1
Coppermine Coppermine Photo Gallery 1.3.2
Coppermine Coppermine Photo Gallery 1.3.3
1 EDB exploit
NA
CVE-2007-0202
SQL injection vulnerability in index.php in @lex Guestbook 4.0.2 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the lang parameter.
Alexphpteam Alex Guestbook 3.13
Alexphpteam Alex Guestbook 4.0.1
Alexphpteam Alex Guestbook 3.12
Alexphpteam Alex Guestbook 4.0.2
1 EDB exploit
NA
CVE-2007-0205
Directory traversal vulnerability in admin/skins.php for @lex Guestbook 4.0.2 and previous versions allows remote malicious users to create files in arbitrary directories via ".." sequences in the (1) aj_skin and (2) skin_edit parameters. NOTE: this can be leveraged for...
Alexphpteam Alex Guestbook 3.13
Alexphpteam Alex Guestbook 4.0.1
Alexphpteam Alex Guestbook 3.12
Alexphpteam Alex Guestbook 4.0.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »