Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
k1tk4t vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4253
SQL injection vulnerability in the News module in modules.php in Envolution 1.1.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the topic parameter, a different vector than CVE-2005-4263.
Envolution Envolution
1 EDB exploit
NA
CVE-2006-5250
PHP remote file inclusion vulnerability in lib/googlesearch/GoogleSearch.php in BlueShoes 4.6_public and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the APP[path][lib] parameter, a different vector than CVE-2006-2864.
Blueshoes Blueshoes Framework
1 EDB exploit
NA
CVE-2006-5254
PHP remote file inclusion vulnerability in registration_detailed.inc.php in Mark Van Bellen Detailed User Registration (com_registration_detailed), aka regdetailed, 4.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_ab...
Mamboxchange Extended Registration
1 EDB exploit
NA
CVE-2006-5308
Multiple PHP remote file inclusion vulnerabilities in Open Conference Systems (OCS) prior to 1.1.6 allow remote malicious users to execute arbitrary PHP code via a URL in the fullpath parameter in (1) include/theme.inc.php or (2) include/footer.inc.php.
Open Conference Systems Open Conference Systems
1 EDB exploit
NA
CVE-2006-4321
PHP remote file inclusion vulnerability in cpg.php in the Coppermine Photo Gallery component (com_cpg) 1.0 and previous versions for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Coppermine Coppermine Photo Gallery 1.0
1 EDB exploit
NA
CVE-2006-5310
PHP remote file inclusion vulnerability in common/visiteurs/include/menus.inc.php in J-Pierre DEZELUS Les Visiteurs 2.0.1, as used in phpMyConferences (phpMyConference) 8.0.2 and possibly other products, allows remote malicious users to execute arbitrary PHP code via a URL in the...
Phpmyconferences Phpmyconferences
J-pierre Dezelus Les Visiteurs 2.0.1
1 EDB exploit
NA
CVE-2006-5249
PHP remote file inclusion vulnerability in tagmin/delTagUser.php in TagIt! Tagboard 2.1.B Build 2 (tagit2b) allows remote malicious users to execute arbitrary PHP code via a URL in the configpath parameter.
Tagit Tagboard 2.1.b Build 2
1 EDB exploit
NA
CVE-2006-5256
PHP remote file inclusion vulnerability in claroline/inc/lib/import.lib.php in Claroline 1.8.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the includePath parameter.
Claroline Claroline 1.6
Claroline Claroline 1.6 Beta
Claroline Claroline 1.7.5
Claroline Claroline 1.7.6
Claroline Claroline 1.2
Claroline Claroline 1.3
Claroline Claroline 1.6 Rc1
Claroline Claroline 1.7
Claroline Claroline 1.7.7
Claroline Claroline
Claroline Claroline 1.4
Claroline Claroline 1.5
Claroline Claroline 1.7.1
Claroline Claroline 1.7.2
Claroline Claroline 1.5.3
Claroline Claroline 1.5.4
Claroline Claroline 1.7.3
Claroline Claroline 1.7.4
1 EDB exploit
NA
CVE-2007-6552
Directory traversal vulnerability in index.php in AuraCMS 2.2 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the act parameter, possibly involving the news pilih component; as demonstrated by including admin/admin_users.php to...
Auracms Auracms 2.2
1 EDB exploit
NA
CVE-2007-6004
Multiple SQL injection vulnerabilities in index.php in Toko Instan 7.6 allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter in an artikel action or (2) the katid parameter in a produk action.
Toko Instan 7.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »