Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
darkfig vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-5314
PHP remote file inclusion vulnerability in ftag.php in TribunaLibre 3.12 Beta allows remote malicious users to execute arbitrary PHP code via a URL in the mostrar parameter.
Phplibre Tribunalibre 3.12 Beta
1 EDB exploit
7.5
CVSSv2
CVE-2006-5315
PHP remote file inclusion vulnerability in main.php in registroTL allows remote malicious users to execute arbitrary PHP code via an ftp:// URL in the page parameter.
Phplibre Registrotl 0.1b
Phplibre Registrotl 0.5b
1 EDB exploit
7.8
CVSSv2
CVE-2006-5316
registroTL stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for /usuarios.dat.
Phplibre Registrotl 0.1b
Phplibre Registrotl 0.5b
1 EDB exploit
6.8
CVSSv2
CVE-2007-5913
dirsys/modules/auth.php in JBC Explorer 7.20 RC1 and previous versions does not require authentication, which allows remote malicious users to (1) delete auth.inc.php via the suppr parameter, and (2) re-create the auth.inc.php file with contents that specify a new account name an...
Jean Charles Jbc Explorer
1 EDB exploit
6.8
CVSSv2
CVE-2007-5914
Direct static code injection vulnerability in dirsys/modules/config/post.php in JBC Explorer 7.20 RC1 and previous versions allows remote authenticated administrators to inject arbitrary PHP code via the DEBUG parameter, which can be executed by accessing config.inc.php. NOTE: th...
Jean Charles Jbc Explorer
1 EDB exploit
7.5
CVSSv2
CVE-2006-4601
SQL injection vulnerability in index.php in Annuaire 1Two 2.2 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Annuaire 1two 2.2
1 EDB exploit
5.1
CVSSv2
CVE-2006-6756
The code function in install.fct.php in Ixprim 1.2 produces a guessable value of the confidential IXP_CODE in mainfile.php, which might allow remote malicious users to gain access to the administration panel via a brute force attack.
Ixprim Ixprim Cms 1.2
1 EDB exploit
5.8
CVSSv2
CVE-2006-3385
Cross-site scripting (XSS) vulnerability in divers.php in Vincent Leclercq News 5.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) id and (2) disabled parameters.
Vincent Leclercq News 5.2
1 EDB exploit
7.5
CVSSv2
CVE-2006-4632
Multiple SQL injection vulnerabilities in SoftBB 0.1, and possibly earlier, allow remote malicious users to execute arbitrary SQL commands via the (1) groupe parameter in addmembre.php and the (2) select parameter in moveto.php.
Softbb Softbb
1 EDB exploit
7.5
CVSSv2
CVE-2007-0971
Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote malicious users to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other ...
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »