Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
darkfig vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-5319
Directory traversal vulnerability in redir.php in Foafgen 0.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the foaf parameter.
Toxi Foafgen 0.3
1 EDB exploit
7.5
CVSSv2
CVE-2006-2867
SQL injection vulnerability in editpost.php in CoolForum 0.8.3 beta and previous versions allows remote malicious users to execute arbitrary SQL commands via the post parameter.
Coolforum Coolforum
1 EDB exploit
5
CVSSv2
CVE-2006-2946
Dmx Forum 2.1a stores _includes/bd.inc under the web root with insufficient access control, which allows remote malicious users to obtain database username and password information.
Dmx Forum Dmx Forum
1 EDB exploit
7.5
CVSSv2
CVE-2006-5085
Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote malicious users to execute arbitrary PHP code via the nom_blog parameter, which is injected into include/variables.php.
Pixel Motion Pixel Motion Blog 2.1.1
1 EDB exploit
6.4
CVSSv2
CVE-2006-5086
Blog Pixel Motion 2.1.1 allows remote malicious users to change the username and password for the admin user via a direct request to insere_base.php with modified (1) login and (2) pass parameters. NOTE: this issue was claimed to be SQL injection by the original researcher, but i...
Pixel Motion Pixel Motion Blog 2.1.1
1 EDB exploit
7.5
CVSSv2
CVE-2007-3432
Unrestricted file upload vulnerability in admin/images.php in Pluxml 0.3.1 allows remote malicious users to upload and execute arbitrary PHP code via a .jpg filename.
Pluxml Pluxml 0.3.1
1 EDB exploit
5
CVSSv2
CVE-2006-2947
Dmx Forum 2.1a allows remote malicious users to obtain username and password information via a direct request to pops/edit.php with a modified membre parameter.
Dmx Forum Dmx Forum 2.1a
1 EDB exploit
5.5
CVSSv2
CVE-2008-0403
The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication for SaveCfgFile.cgi, which allows remote malicious users to read and modify configuration via a direct request to SaveCfgFile.cgi.
Belkin F5d9230-4
1 EDB exploit
7.5
CVSSv2
CVE-2007-0972
Unrestricted file upload vulnerability in modules/emoticons.php in Jupiter CMS 1.1.5 allows remote malicious users to upload arbitrary files by modifying the HTTP request to send an image content type, and to omit is_guest and is_user parameters. NOTE: this issue might be related...
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
7.5
CVSSv2
CVE-2007-1171
SQL injection vulnerability in includes/nsbypass.php in NukeSentinel 2.5.05, 2.5.11, and other versions prior to 2.5.12 allows remote malicious users to execute arbitrary SQL commands via an admin cookie.
Nukescripts Nukesentinel
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »