Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dun vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4330
Directory traversal vulnerability in index.php in LanSuite 3.3.2 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the design parameter.
Lansuite Lansuite 3.3.2
1 EDB exploit
NA
CVE-2008-4331
Directory traversal vulnerability in library/pagefunctions.inc.php in phpOCS 0.1 beta3 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the act parameter to index.php.
Phpocs Phpocs 0.1
Phpocs Phpocs
1 EDB exploit
NA
CVE-2008-2394
Multiple SQL injection vulnerabilities in TAGWORX.CMS 3.00.02 allow remote malicious users to execute arbitrary SQL commands via the (1) cid parameter to contact.php and the (2) nid parameter to news.php.
Tagworx Tagworx Cms 3.00.02
1 EDB exploit
NA
CVE-2009-2310
SQL injection vulnerability in include/get_read.php in Extensible-BioLawCom CMS (X-BLC) 0.2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the section parameter.
Bow Der Kleine X-blc 0.1.4
Bow Der Kleine X-blc
1 EDB exploit
NA
CVE-2011-0405
Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via directory traversal sequences in the pgvaction parameter.
Phpgedview Phpgedview 4.2.3
1 EDB exploit
NA
CVE-2008-4739
Directory traversal vulnerability in index.php in PlugSpace 0.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the navi parameter.
Plugspace Plugspace 0.1
1 EDB exploit
NA
CVE-2006-0755
Multiple PHP remote file include vulnerabilities in dotProject 2.0.1 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary commands via the baseDir parameter in (1) db_adodb.php, (2) db_connect.php, (3) session.php, (4) vw_usr_...
Dotproject Dotproject 2.0
Dotproject Dotproject 2.0.1
10 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4