Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cr4wl3r vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4264
PHP remote file inclusion vulnerability in components/core/connect.php in AROUNDMe 1.1 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the language_path parameter.
Aroundme Aroundme 0.5.1
Barnraiser Aroundme 0.7.7
Barnraiser Aroundme
Aroundme Aroundme 0.6.9
Aroundme Aroundme 0.5.2
1 EDB exploit
NA
CVE-2009-4471
Multiple PHP remote file inclusion vulnerabilities in FreeSchool 1.1.0 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the CLASSPATH parameter to (1) bib_form.php, (2) bib_pldetails.php, (3) bib_plform.php, (4) bib_plsearchc.php, (5) ...
Freeschool Freeschool
1 EDB exploit
NA
CVE-2010-0611
Multiple SQL injection vulnerabilities in adminlogin.php in Baal Systems 3.8 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Baalsystems Baal Systems
Baalsystems Baal Systems 3.7
Baalsystems Baal Systems 3.6
1 EDB exploit
NA
CVE-2010-1112
Cross-site scripting (XSS) vulnerability in cat.php in KloNews 2.0 allows remote malicious users to inject arbitrary web script or HTML via the cat parameter.
Tristan Barczyk Klonews 2.0
1 EDB exploit
NA
CVE-2010-4998
PHP remote file inclusion vulnerability in ardeaCore/lib/core/ardeaInit.php in ardeaCore PHP Framework 2.2 allows remote malicious users to execute arbitrary PHP code via a URL in the pathForArdeaCore parameter. NOTE: some of these details are obtained from third party informatio...
Maulana Al Matien Ardeacore Php Framework 2.2
1 EDB exploit
NA
CVE-2006-0087
SQL injection vulnerability in (1) pages.php and (2) detail.php in Lizard Cart CMS 1.04 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Lizard Cart Lizard Cart Cms 1.0.4
1 EDB exploit
NA
CVE-2010-0966
PHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the basePath parameter.
Dzcp Dev\\!l\\'z Clanportal 1.5.2
1 EDB exploit
NA
CVE-2010-1053
Multiple SQL injection vulnerabilities in Zen Time Tracking 2.2 and previous versions, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters to (a) userlogin.php and (b) managerlogin.php....
Zentracking Zen Time Tracking
1 EDB exploit
NA
CVE-2009-4154
Directory traversal vulnerability in includes/feedcreator.class.php in Elxis CMS allows remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter.
Elxis Elxis Cms
1 EDB exploit
NA
CVE-2009-4223
PHP remote file inclusion vulnerability in adm/krgourl.php in KR-Web 1.1b2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter.
Gianni Tommasi Kr-php Web Content Server
Gianni Tommasi Kr-php Web Content Server 1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »