Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
noge vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6377
PHP remote file inclusion vulnerability in include/global.php in Multi SEO phpBB 1.1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the pfad parameter.
Phpbb-seo Multi Seo Phpbb 1.1.0
1 EDB exploit
NA
CVE-2008-6482
PHP remote file inclusion vulnerability in admin.treeg.php in the Flash Tree Gallery (com_treeg) component 1.0 for Joomla!, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via the mosConfig_live_site parameter.
Justjoomla Com Treeg 1.0
1 EDB exploit
NA
CVE-2009-2769
PHP remote file inclusion vulnerability in include/timesheet.php in Ultrize TimeSheet 1.2.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the config[include_dir] parameter.
Ultrize Timesheet 1.2.2
1 EDB exploit
NA
CVE-2009-2881
Multiple SQL injection vulnerabilities in Basilic 1.5.13 allow remote malicious users to execute arbitrary SQL commands via the idAuthor parameter to (1) index.php and possibly (2) allpubs.php in publications/.
Artis.imag Basilic 1.5.13
1 EDB exploit
NA
CVE-2008-6612
Unrestricted file upload vulnerability in admin/uploader.php in Minimal ABlog 0.4 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in img/.
Abweb Minimal-ablog 0.4
1 EDB exploit
NA
CVE-2013-3524
SQL injection vulnerability in popupnewsitem/ in the Pop Up News module 2.0 and possibly earlier for phpVMS allows remote malicious users to execute arbitrary SQL commands via the itemid parameter. NOTE: this was originally reported as a problem in phpVMS.
Simpilotgroup Pop Up News 2.0
1 EDB exploit
NA
CVE-2009-3203
SQL injection vulnerability in store.php in AJ Auction Pro OOPD 2.x allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ajsquare Aj Auction Pro-oopd 2.0
1 EDB exploit
NA
CVE-2009-3336
SQL injection vulnerability in auction_details.php in PHP Pro Bid allows remote malicious users to execute arbitrary SQL commands via the auction_id parameter.
Phpprobid Php Pro Bid
1 EDB exploit
NA
CVE-2009-3424
Multiple PHP remote file inclusion vulnerabilities in MaxCMS 3.11.20b, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) is_projectPath parameter to includes/InstantSite/inc.is_root.php; GLOBALS[thCMS_root] parameter...
Databay Maxcms 3.11.20b
1 EDB exploit
NA
CVE-2008-6483
PHP remote file inclusion vulnerability in admin.googlebase.php in the Ecom Solutions VirtueMart Google Base (aka com_googlebase or Froogle) component 1.1 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Virtuemart-solutions Com Googlebase 1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »