Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4291
PHP remote file inclusion vulnerability in handlers/email/mod.listmail.php in PHlyMail Lite 3.4.4 and previous versions (Build 3.04.04) allows remote malicious users to execute arbitrary PHP code via a URL in the _PM_[path][handler] parameter.
Phlymail Phlymail Lite
1 EDB exploit
NA
CVE-2006-4329
Multiple PHP remote file inclusion vulnerabilities in Shadows Rising RPG (Pre-Alpha) 0.0.5b and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the CONFIG[gameroot] parameter to (1) core/includes/security.inc.php, (2) core/includes/smarty...
Shadows Rising Rpg Shadows Rising Rpg
1 EDB exploit
NA
CVE-2006-4420
Directory traversal vulnerability in include_lang.php in Phaos 0.9.2 allows remote malicious users to include arbitrary local files via ".." sequences in the lang parameter.
Phaos Phaos 0.9
Phaos Phaos 0.9.1
Phaos Phaos 0.9.2
1 EDB exploit
NA
CVE-2006-4426
PHP remote file inclusion vulnerability in AES/modules/auth/phpsecurityadmin/include/logout.php in AlberT-EasySite (AES) 1.0a5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the PSA_PATH parameter.
Albert Albert-easysite 0.8.12
Albert Albert-easysite
1 EDB exploit
NA
CVE-2006-5510
Directory traversal vulnerability in explorer_load_lang.php in PH Pexplorer 0.24 allows remote malicious users to include arbitrary local files via ".." sequences in the Language cookie, as demonstrated by uploading a .gif file that contains PHP code.
Bluevirus-design Ph Pexplorer
1 EDB exploit
NA
CVE-2006-5511
Direct static code injection vulnerability in delete.php in JaxUltraBB (JUBB) 2.0, when register_globals is enabled, allows remote malicious users to inject arbitrary web script, HTML, or PHP via the contents parameter, whose value is prepended to the file specified by the forum ...
Jaxultrabb Jaxultrabb 2.0
1 EDB exploit
NA
CVE-2006-5625
PHP remote file inclusion vulnerability in wwwdev/nxheader.inc.php in N/X 2002 Professional Edition Web Content Management System (WCMS) 4.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the c[path] parameter.
Nx N X Wcms 2002 Prerelease1
Nx N X Wcms
1 EDB exploit
NA
CVE-2006-5665
PHP remote file inclusion vulnerability in admin/modules_data.php in the phpBB module Spider Friendly 1.3.10 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Spider Friendly Spider Friendly
1 EDB exploit
NA
CVE-2006-5732
SQL injection vulnerability in logout.php in T.G.S. CMS 0.1.7 and previous versions allows remote malicious users to execute arbitrary SQL commands via the myauthorid cookie.
Tgs Cms Tgs Cms
1 EDB exploit
NA
CVE-2006-5834
Directory traversal vulnerability in general.php in OpenSolution Quick.Cms.Lite 0.3 allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the sLanguage Cookie parameter.
Opensolution Quick.cms.lite 0.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »