Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gulftech security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2826
SQL injection vulnerability in sessions.inc in PHP Base Library (PHPLib) prior to 7.4a allows remote malicious users to execute arbitrary SQL commands via the id variable, which is set by a client through a query string or a cookie.
Phplib Team Phplib 7.4
Phplib Team Phplib 7.4 Pre2
1 EDB exploit
NA
CVE-2006-1794
SQL injection vulnerability in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote malicious users to execute arbitrary SQL commands via (1) the $username variable in the mosGetParam function and (2) the $task parameter in the mosMenuCheck function in (a) includes/ma...
Mambo Mambo 4.0.14
Mambo Mambo 4.5.2.3
Mambo Mambo 4.5.3h
Mambo Mambo 4.5.1 1.0.9
Mambo Mambo 4.5.1a
Mambo Mambo 4.5 1.0.0
Mambo Mambo 4.5 1.0.1
Mambo Mambo 4.5.2.1
Mambo Mambo 4.5.2.2
Mambo Mambo 4.5 1.0.3 Beta
Mambo Mambo
Mambo Mambo 4.5.2
Mambo Mambo 4.5 1.0.2
1 EDB exploit
NA
CVE-2006-1127
Cross-site scripting (XSS) vulnerability in Gallery 2 up to 2.0.2 allows remote malicious users to inject arbitrary web script or HTML via the X-Forwarded-For (X_FORWARDED_FOR) HTTP header, which is not properly handled when adding a comment to an album.
Gallery Project Gallery 2.0 Alpha
Gallery Project Gallery 2.0 Alpha1
Gallery Project Gallery 2.0 Alpha2
Gallery Project Gallery 2.0 Alpha3
Gallery Project Gallery 2.0
Gallery Project Gallery 2.0 Alpha4
Gallery Project Gallery 2.0 Beta1
Gallery Project Gallery 2.0.1
Gallery Project Gallery 2.0.2
Gallery Project Gallery 2.0 Beta2
Gallery Project Gallery 2.0 Beta3
1 EDB exploit
NA
CVE-2006-1128
Directory traversal vulnerability in the session handling class (GallerySession.class) in Gallery 2 up to 2.0.2 allows remote malicious users to access and delete files by specifying the session in a cookie, which is used in constructing file paths before the session value is san...
Gallery Project Gallery 2.0
Gallery Project Gallery 2.0 Alpha4
Gallery Project Gallery 2.0 Beta1
Gallery Project Gallery 2.0 Beta2
Gallery Project Gallery 2.0.1
Gallery Project Gallery 2.0.2
Gallery Project Gallery 2.0 Beta3
Gallery Project Gallery 2.0 Alpha
Gallery Project Gallery 2.0 Alpha1
Gallery Project Gallery 2.0 Alpha2
Gallery Project Gallery 2.0 Alpha3
1 EDB exploit
NA
CVE-2006-1032
Eval injection vulnerability in the decode function in rpc_decoder.php for phpRPC 0.7 and previous versions, as used by runcms, exoops, and possibly other programs, allows remote malicious users to execute arbitrary PHP code via the base64 tag.
Phprpc Phprpc 0.8
Phprpc Phprpc 0.9
Phprpc Phprpc 0.7
2 EDB exploits
NA
CVE-2006-0887
Eval injection vulnerability in sessions.inc in PHP Base Library (PHPLib) prior to 7.4a, when index.php3 from the PHPLib distribution is available on the server, allows remote malicious users to execute arbitrary PHP code by including a base64-encoded representation of the code i...
Phplib Team Phplib 7.4
1 EDB exploit
NA
CVE-2006-0871
Directory traversal vulnerability in the _setTemplate function in Mambo 4.5.3, 4.5.3h, and possibly earlier versions allows remote malicious users to read and include arbitrary files via the mos_change_template parameter. NOTE: CVE-2006-1794 has been assigned to the SQL injection...
Mambo Mambo 4.5.3h
1 EDB exploit
NA
CVE-2006-0869
Directory traversal vulnerability in the "remember me" feature in liveuser.php in PHP Extension and Application Repository (PEAR) LiveUser 0.16.8 and previous versions allows remote malicious users to determine file existence, and possibly delete arbitrary files with sh...
Pear Pear Liveuser 0.10.0
Pear Pear Liveuser 0.13.3
Pear Pear Liveuser 0.14.0
Pear Pear Liveuser 0.15.0
Pear Pear Liveuser 0.16.5
Pear Pear Liveuser 0.16.6
Pear Pear Liveuser 0.6.1
Pear Pear Liveuser 0.7
Pear Pear Liveuser 0.11.0
Pear Pear Liveuser 0.11.1
Pear Pear Liveuser 0.15.1
Pear Pear Liveuser 0.16.0
Pear Pear Liveuser 0.16.7
Pear Pear Liveuser 0.16.8
Pear Pear Liveuser 0.8
Pear Pear Liveuser 0.8.1
Pear Pear Liveuser 0.13.1
Pear Pear Liveuser 0.13.2
Pear Pear Liveuser 0.16.3
Pear Pear Liveuser 0.16.4
Pear Pear Liveuser 0.5.1
Pear Pear Liveuser 0.6
1 EDB exploit
NA
CVE-2006-0823
Multiple SQL injection vulnerabilities in Geeklog 1.4.0 prior to 1.4.0sr1 and 1.3.11 prior to 1.3.11sr4 allow remote malicious users to inject arbitrary SQL commands via the (1) userid variable to users.php or (2) sessid variable to lib-sessions.php.
Geeklog Geeklog 1.3.11
Geeklog Geeklog 1.3.11 Sr3
Geeklog Geeklog 1.4.0
Geeklog Geeklog 1.3.11 Sr1
Geeklog Geeklog 1.3.11 Sr2
1 EDB exploit
NA
CVE-2006-0806
Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote malicious users to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to ...
John Lim Adodb 4.66
John Lim Adodb 4.71
John Lim Adodb 4.68
John Lim Adodb 4.70
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »