Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nukedx vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4365
Multiple PHP remote file inclusion vulnerabilities in VistaBB 2.0.33 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter in (1) includes/functions_mod_user.php or (2) includes/functions_portal.php.
Vistabb Vistabb
1 EDB exploit
7.5
CVSSv2
CVE-2006-0961
SQL injection vulnerability in yazdir.asp in Cilem Hiber 1.1 allows remote malicious users to execute arbitrary SQL commands via the haber_id parameter. NOTE: this product has also been referred to as "Cilem News," although that does not appear to be the proper name.
Cilem Cilem Haber 1.1
1 EDB exploit
5.1
CVSSv2
CVE-2006-2675
PHP remote file inclusion vulnerability in ubbt.inc.php in UBBThreads 5.x and 6.x allows remote malicious users to execute arbitrary PHP code via a URL in the (1) thispath or (2) configdir parameters.
Ubbcentral Ubb.threads 5.5.1
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 3.5
Ubbcentral Ubb.threads 3.4
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.5.1.1
Ubbcentral Ubb.threads 5.0
Ubbcentral Ubb.threads 6.5.2
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.5.2 Beta2
Ubbcentral Ubb.threads 6.3.1
1 EDB exploit
5.1
CVSSv2
CVE-2006-2735
PHP remote file inclusion vulnerability in language/lang_english/lang_activity.php in Activity MOD Plus (Amod) 1.1.0, as used with phpBB when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE:...
Activity Mod Plus Activity Mod Plus 1.1.0
1 EDB exploit
5.1
CVSSv2
CVE-2006-2736
PHP remote file inclusion vulnerability in blend_data/blend_common.php in Blend Portal 1.2.0, as used with phpBB when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: This is a similar vulne...
Phpbb-portal Blend Portal 1.2.0
1 EDB exploit
5.1
CVSSv2
CVE-2006-2739
PHP remote file inclusion vulnerability in footers.php in Epicdesigns tinyBB 0.3, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the tinybb_footers parameter.
Epic Designs Tinybb
1 EDB exploit
6.8
CVSSv2
CVE-2006-2740
Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote malicious users to execute arbitrary SQL commands via the (1) q parameter in (a) forgot.php, and the (2) username and (3) password parameters in (b) login.php, and other unspecified vectors.
Epic Designs Tinybb
1 EDB exploit
7.5
CVSSv2
CVE-2006-2744
PHP remote file inclusion vulnerability in p-popupgallery.php in F@cile Interactive Web 0.8.41 up to and including 0.8.5 allows remote malicious users to execute arbitrary PHP code via a URL in the l parameter.
Facile Interactive Web Facile Interactive Web 0.8.41
Facile Interactive Web Facile Interactive Web 0.8.5
1 EDB exploit
5.1
CVSSv2
CVE-2006-2745
Multiple PHP remote file inclusion vulnerabilities in F@cile Interactive Web 0.8.5 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) pathfile parameter in (a) p-editpage.php and (b) p-editbox.p...
Facile Interactive Web Facile Interactive Web
Facile Interactive Web Facile Interactive Web 0.8.41
1 EDB exploit
7.8
CVSSv2
CVE-2006-2794
Hesabim.asp in ASPSitem 2.0 and previous versions allows remote malicious users to read private messages of other users via a modified id parameter.
Aspsitem Aspsitem
Aspsitem Aspsitem 1.83
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »