Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nukedx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2744
PHP remote file inclusion vulnerability in p-popupgallery.php in F@cile Interactive Web 0.8.41 up to and including 0.8.5 allows remote malicious users to execute arbitrary PHP code via a URL in the l parameter.
Facile Interactive Web Facile Interactive Web 0.8.5
Facile Interactive Web Facile Interactive Web 0.8.41
1 EDB exploit
NA
CVE-2006-2746
Multiple cross-site scripting (XSS) vulnerabilities in F@cile Interactive Web 0.8.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) lang parameter in index.php, and the (2) mytheme and (3) myskin parameters in multiple "p...
Facile Interactive Web Facile Interactive Web 0.8.41
Facile Interactive Web Facile Interactive Web
1 EDB exploit
NA
CVE-2006-2793
SQL injection vulnerability in Anket.asp in ASPSitem 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the hid parameter.
Aspsitem Aspsitem 1.83
Aspsitem Aspsitem
1 EDB exploit
NA
CVE-2006-6177
SQL injection vulnerability in system/core/users/users.profile.inc.php in Neocrome Seditio 1.10 and previous versions allows remote authenticated users to execute arbitrary SQL commands via a double-url-encoded id parameter to users.php that begins with a valid filename, as demon...
Neocrome Seditio
1 EDB exploit
NA
CVE-2006-1994
PHP remote file inclusion vulnerability in dForum 1.5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the DFORUM_PATH parameter to (1) about.php, (2) admin.php, (3) anmelden.php, (4) losethread.php, (5) config.php, (6) delpost.php, (...
Dforum Dforum 1.5
1 EDB exploit
NA
CVE-2006-2028
Cross-site scripting (XSS) vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal.
Simplog Simplog
1 EDB exploit
NA
CVE-2006-1353
Multiple SQL injection vulnerabilities in ASPPortal 3.1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the downloadid parameter in download_click.asp and (2) content_ID parameter in news/News_Item.asp; authenticated administrators c...
Aspportal Aspportal 3.0.0
Aspportal Aspportal 3.1.0
Aspportal Aspportal 3.1.1
1 EDB exploit
NA
CVE-2006-1213
JiRo's Banner System Experience and Professional 1.0 and previous versions allows remote malicious users to bypass access restrictions and gain privileges via a direct request to certain scripts in the files directory, as demonstrated by using addadmin.asp to create a new ad...
Jiro Banner System 1.0 Experience
Jiro Banner System 1.0 Professional
1 EDB exploit
NA
CVE-2006-1333
Multiple SQL injection vulnerabilities in BetaParticle Blog 6.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to template_permalink.asp or (2) fldGalleryID parameter to template_gallery_detail.asp.
Betaparticle Betaparticle Blog 6.0
Betaparticle Betaparticle Blog 3.0
Betaparticle Betaparticle Blog 4.0
Betaparticle Betaparticle Blog 5.0
1 EDB exploit
NA
CVE-2006-2002
PHP remote file inclusion vulnerability in stats.php in MyGamingLadder 7.0 allows remote malicious users to execute arbitrary PHP code via a URL in the dir[base] parameter.
Mygamingladder Mygamingladder 7.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »