Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cr4wl3r vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-1927
Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) ser...
Openmairie Opencourrier 2.02
Openmairie Opencourrier 2.03
1 EDB exploit
6.8
CVSSv2
CVE-2010-1935
Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE...
Openmairie Openpresse 1.01
1 EDB exploit
6.8
CVSSv2
CVE-2010-1945
Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php...
Openmairie Openfoncier 2.00
1 EDB exploit
6.8
CVSSv2
CVE-2010-1946
Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php...
Openmairie Openregistrecil 1.02
1 EDB exploit
6.8
CVSSv2
CVE-2010-1999
Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to...
Openmairie Opencatalogue 1.024
1 EDB exploit
7.5
CVSSv2
CVE-2010-2134
Multiple SQL injection vulnerabilities in login.php in Project Man 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password parameter.
Http-solution Project Man 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2010-2138
Multiple directory traversal vulnerabilities in ProMan 0.1.1 and previous versions allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the _SESSION[userLang] parameter to (1) elisttasks.php, (2) managepmanagers.php, (3) m...
Giaard Proman 0.1.0
Giaard Proman
1 EDB exploit
6.8
CVSSv2
CVE-2010-0966
PHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the basePath parameter.
Dzcp Dev\\!l\\'z Clanportal 1.5.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-1046
Multiple SQL injection vulnerabilities in index.php in Rostermain 1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) userid (username) and (2) password parameters.
Ryan Marshall Rostermain
1 EDB exploit
6.8
CVSSv2
CVE-2010-1053
Multiple SQL injection vulnerabilities in Zen Time Tracking 2.2 and previous versions, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters to (a) userlogin.php and (b) managerlogin.php....
Zentracking Zen Time Tracking
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »