Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2008-5066
PHP remote file inclusion vulnerability in upload/admin/frontpage_right.php in Agares Media ThemeSiteScript 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the loadadminpage parameter.
Agaresmedia Themesitescript 1.0
1 EDB exploit
1000
VMScore
CVE-2008-5053
PHP remote file inclusion vulnerability in admin.rssreader.php in the Simple RSS Reader (com_rssreader) 1.0 component for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
Joomla Com Rssreader 1.0
1 EDB exploit
1000
VMScore
CVE-2008-5063
PHP remote file inclusion vulnerability in Admin/ADM_Pagina.php in OTManager 2.4 allows remote malicious users to execute arbitrary PHP code via a URL in the Tipo parameter.
Otmanager Otmanager 2.4
1 EDB exploit
1000
VMScore
CVE-2008-5060
Multiple PHP remote file inclusion vulnerabilities in ModernBill 4.4 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the DIR parameter to (1) export_batch.inc.php, (2) run_auto_suspend.cron.php, and (3) send_email_cache.php in include...
Modernbill Modernbill 2.01
Modernbill Modernbill 2.02s
Modernbill Modernbill 4.1.1
Modernbill Modernbill 4.1.2
Modernbill Modernbill 4.1.3
Modernbill Modernbill 4.0.2
Modernbill Modernbill 3.1.3
Modernbill Modernbill
Modernbill Modernbill 3.0
Modernbill Modernbill 3.1.0
Modernbill Modernbill 4.2.1
Modernbill Modernbill 4.3.0
Modernbill Modernbill 4.0.1
Modernbill Modernbill 4.3.2
1 EDB exploit
1000
VMScore
CVE-2008-4704
PHP remote file inclusion vulnerability in SezHooTabsAndActions.php in SezHoo 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the IP parameter.
Mitre Sezhoo 0.1
1 EDB exploit
1000
VMScore
CVE-2008-4673
PHP remote file inclusion vulnerability in panel/common/theme/default/header_setup.php in WebBiscuits Software Events Calendar 1.1 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) path[docroot] and (2) component parameters.
Webbiscuits Events Calendar 1.1
1 EDB exploit
1000
VMScore
CVE-2008-4557
plugins/wacko/highlight/html.php in Strawberry in CuteNews.ru 1.1.1 (aka Strawberry) allows remote malicious users to execute arbitrary PHP code via the text parameter, which is inserted into an executable regular expression.
Cutephp Cutenews 1.1.1
1 EDB exploit
1000
VMScore
CVE-2008-4502
Multiple PHP remote file inclusion vulnerabilities in DataFeedFile (DFF) PHP Framework API allow remote malicious users to execute arbitrary PHP code via a URL in the DFF_config[dir_include] parameter to (1) DFF_affiliate_client_API.php, (2) DFF_featured_prdt.func.php, (3) DFF_me...
Datafeedfile Dff Framework Api
1 EDB exploit
1000
VMScore
CVE-2008-4428
Unrestricted file upload vulnerability in upload.php in Phlatline's Personal Information Manager (pPIM) 1.0 and previous versions allows remote malicious users to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the file in the top-l...
Phlatline Personal Information Manager
3 EDB exploits
1000
VMScore
CVE-2008-4439
PHP remote file inclusion vulnerability in admin/bin/patch.php in MartinWood Datafeed Studio prior to 1.6.3 allows remote malicious users to execute arbitrary PHP code via a URL in the INSTALL_FOLDER parameter. NOTE: the provenance of this information is unknown; the details are ...
Martinwood Datafeed Studio
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »