Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-1219
PHP remote file inclusion vulnerability in actions/del.php in Admin Phorum 3.3.1a allows remote malicious users to execute arbitrary PHP code via a URL in the include_path parameter.
Admin Phorum Admin Phorum 3.3.1a
1 EDB exploit
755
VMScore
CVE-2007-2676
PHP remote file inclusion vulnerability in skins/header.php in Open Translation Engine (OTE) 0.7.8 allows remote malicious users to execute arbitrary PHP code via a URL in the ote_home parameter.
Open Translation Engine Open Translation Engine 0.7.8
1 EDB exploit
755
VMScore
CVE-2007-3589
Multiple SQL injection vulnerabilities in b1gbb 2.24.0 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) showthread.php or (2) showboard.php.
B1g B1gbb 2.24
1 EDB exploit
755
VMScore
CVE-2005-2246
Multiple PHP remote file inclusion vulnerabilities in iPhotoAlbum 1.1 allow remote malicious users to execute arbitrary code via the (1) doc_path parameter to getpage.php or (2) set_menu parameter to lib/static/header.php.
1 EDB exploit
755
VMScore
CVE-2008-0690
SQL injection vulnerability in index.php in the mosDirectory (com_directory) 2.3.2 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a viewcat action.
Joomla Com Directory 2.3.2
1 EDB exploit
505
VMScore
CVE-2008-0813
Directory traversal vulnerability in Download.php in XPWeb 3.0.1, 3.3.2, and possibly other versions, allows remote malicious users to read arbitrary files via a .. (dot dot) in the url parameter.
Xpweb Xpweb 3.0.1
Xpweb Xpweb 3.3.2
1 EDB exploit
645
VMScore
CVE-2008-0814
Directory traversal vulnerability in download.php in Tracking Requirements & Use Cases (TRUC) 0.11.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the upload_filename parameter.
Truc Truc 0.11
1 EDB exploit
755
VMScore
CVE-2008-6407
Directory traversal vulnerability in frame.php in ol'bookmarks manager 0.7.5 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the framefile parameter.
Brian Wilson Ol\\'bookmarks 0.7.5
1 EDB exploit
755
VMScore
CVE-2008-6408
PHP remote file inclusion vulnerability in frame.php in ol'bookmarks manager 0.7.5 allows remote malicious users to execute arbitrary PHP code via a URL in the framefile parameter.
Brian Wilson Ol\\'bookmarks 0.7.5
1 EDB exploit
755
VMScore
CVE-2008-6414
SQL injection vulnerability in detail.php in AJ Auction Pro Platinum Skin 2 allows remote malicious users to execute arbitrary SQL commands via the item_id parameter.
Aj Square Aj Auction 2.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »