Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2017-1092
IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. IBM X-Force ID: 120390.
Ibm Informix Open Admin Tool 12.1
Ibm Informix Open Admin Tool 11.7
Ibm Informix Open Admin Tool 11.5
2 EDB exploits
10
CVSSv2
CVE-2017-8051
Tenable Appliance 3.5 - 4.4.0, and possibly prior versions, contains a flaw in the simpleupload.py script in the Web UI. Through the manipulation of the tns_appliance_session_user parameter, a remote attacker can inject arbitrary commands.
Tenable Appliance 3.10.0
Tenable Appliance 4.0.0
Tenable Appliance 4.4.0
Tenable Appliance 3.5.0
Tenable Appliance 4.1.0
Tenable Appliance 4.2.0
Tenable Appliance 4.3.0
Tenable Appliance 4.3.1
Tenable Appliance 3.5.1
Tenable Appliance 3.10.1
Tenable Appliance 3.4.0
1 EDB exploit
10
CVSSv2
CVE-2016-1555
(1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php in Netgear WN604 prior to 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 prior to 3.5.5.0 allow remote malicious users to execute arbitrary comm...
Netgear Wnap320 Firmware
Netgear Wndap350 Firmware
Netgear Wndap360 Firmware
Netgear Wndap210v2 Firmware
Netgear Wn604 Firmware
Netgear Wndap660 Firmware
Netgear Wn802tv2 Firmware
2 Metasploit modules
3 Github repositories
10
CVSSv2
CVE-2014-8731
PHPMemcachedAdmin 1.2.2 and previous versions allows remote malicious users to execute arbitrary PHP code via vectors related "serialized data and the last part of the concatenated filename," which creates a file in webroot.
Phpmemcachedadmin Project Phpmemcachedadmin
1 Github repository
10
CVSSv2
CVE-2016-2242
Exponent CMS 2.x prior to 2.3.7 Patch 3 allows remote malicious users to execute arbitrary code via the sc parameter to install/index.php.
Exponentcms Exponent Cms 2.3.5
Exponentcms Exponent Cms 2.3.1
Exponentcms Exponent Cms 2.2.1
Exponentcms Exponent Cms 2.2.0
Exponentcms Exponent Cms 2.0.9
Exponentcms Exponent Cms 2.0.5
Exponentcms Exponent Cms 2.0.4
Exponentcms Exponent Cms 2.3.3
Exponentcms Exponent Cms 2.2.3
Exponentcms Exponent Cms 2.1.3
Exponentcms Exponent Cms 2.1.2
Exponentcms Exponent Cms 2.0.7
Exponentcms Exponent Cms 2.0.6
Exponentcms Exponent Cms 2.0.2
Exponentcms Exponent Cms 2.0.1
Exponentcms Exponent Cms 2.3.7
Exponentcms Exponent Cms 2.3.2
Exponentcms Exponent Cms 2.2.2
Exponentcms Exponent Cms 2.1.1
Exponentcms Exponent Cms 2.1.0
Exponentcms Exponent Cms 2.0.0
Exponentcms Exponent Cms 2.3.8
10
CVSSv2
CVE-2016-5674
__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 up to and including 3.0.0, NUUO NVRsolo 1.7.5 up to and including 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 allows remote malicious users to execute arbitrary PHP code via the log parameter.
Netgear Readynas Surveillance 1.4.2
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.2.0.4
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.4.0
Nuuo Nvrmini 2 3.0.0
Nuuo Nvrmini 2 2.2.1
Nuuo Nvrmini 2 2.0.0
Nuuo Nvrmini 2 1.7.6
Nuuo Nvrmini 2 1.7.5
Nuuo Nvrsolo 2.3.9.6
Nuuo Nvrsolo 2.3.7.10
Nuuo Nvrsolo 2.0.0
Nuuo Nvrsolo 1.75
Nuuo Nvrsolo 3.0.0
Nuuo Nvrsolo 2.1.5
Nuuo Nvrsolo 2.0.1
Nuuo Nvrsolo 2.3.7.9
Nuuo Nvrsolo 2.3.1.20
1 EDB exploit
1 Article
10
CVSSv2
CVE-2016-5675
handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 up to and including 3.0.0, NUUO NVRsolo 1.0.0 up to and including 3.0.0, NUUO Crystal 2.2.1 up to and including 3.2.0, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 allows remote malicious users to execute arbi...
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.4.0
Netgear Readynas Surveillance 1.4.2
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.2.0.4
Nuuo Crystal 2.2.1
Nuuo Crystal 3.2.0
Nuuo Crystal 3.1.0
Nuuo Crystal 3.0.0
Nuuo Nvrsolo 1.3.0
Nuuo Nvrsolo 1.2.0
Nuuo Nvrsolo 2.3.9.6
Nuuo Nvrsolo 2.3.7.10
Nuuo Nvrsolo 2.0.0
Nuuo Nvrsolo 1.75
Nuuo Nvrsolo 1.0.1
Nuuo Nvrsolo 1.0.0
Nuuo Nvrsolo 3.0.0
Nuuo Nvrsolo 2.1.5
1 EDB exploit
1 Article
10
CVSSv2
CVE-2016-5678
NUUO NVRmini 2 1.0.0 up to and including 3.0.0 and NUUO NVRsolo 1.0.0 up to and including 3.0.0 have hardcoded root credentials, which allows remote malicious users to obtain administrative access via unspecified vectors.
Nuuo Nvrmini 2 1.6.2
Nuuo Nvrmini 2 1.6.1
Nuuo Nvrmini 2 1.1.0
Nuuo Nvrmini 2 1.0.0
Nuuo Nvrmini 2 3.0.0
Nuuo Nvrmini 2 1.7.0
Nuuo Nvrmini 2 1.6.4
Nuuo Nvrmini 2 1.3.2
Nuuo Nvrmini 2 1.3.0
Nuuo Nvrmini 2 1.6.0
Nuuo Nvrmini 2 1.5.2
Nuuo Nvrmini 2 2.2.1
Nuuo Nvrmini 2 2.0.0
Nuuo Nvrmini 2 1.7.2
Nuuo Nvrmini 2 1.7.1
Nuuo Nvrmini 2 1.5.1
Nuuo Nvrmini 2 1.4.0
Nuuo Nvrmini 2 1.7.6
Nuuo Nvrmini 2 1.7.5
Nuuo Nvrsolo 1.2.0
Nuuo Nvrsolo 1.1.2
Nuuo Nvrsolo 2.3.9.6
1 EDB exploit
1 Article
10
CVSSv2
CVE-2015-8880
Double free vulnerability in the format printer in PHP 7.x prior to 7.0.1 allows remote malicious users to have an unspecified impact by triggering an error.
Php Php 7.0.0
10
CVSSv2
CVE-2015-4642
The escapeshellarg function in ext/standard/exec.c in PHP prior to 5.4.42, 5.5.x prior to 5.5.26, and 5.6.x prior to 5.6.10 on Windows allows remote malicious users to execute arbitrary OS commands via a crafted string to an application that accepts command-line arguments for a c...
Php Php
Php Php 5.5.0
Php Php 5.5.1
Php Php 5.5.2
Php Php 5.5.3
Php Php 5.5.4
Php Php 5.5.5
Php Php 5.5.6
Php Php 5.5.7
Php Php 5.5.8
Php Php 5.5.9
Php Php 5.5.10
Php Php 5.5.11
Php Php 5.5.12
Php Php 5.5.13
Php Php 5.5.14
Php Php 5.5.15
Php Php 5.5.16
Php Php 5.5.17
Php Php 5.5.18
Php Php 5.5.19
Php Php 5.5.20
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »