Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joss vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0701
Multiple PHP remote file inclusion vulnerabilities in index.php in Cybershade CMS 0.2b, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) THEME_header and (2) THEME_footer parameters.
Cybershade Cybershadecms 0.2b
1 EDB exploit
NA
CVE-2008-4455
Directory traversal vulnerability in index.php in EKINdesigns MySQL Quick Admin 1.5.5 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to read and execute arbitrary files via a .. (dot dot) in the language cookie.
Mysql Quick Admin Mysql Quick Admin 1.5.5
1 EDB exploit
NA
CVE-2008-4490
Directory traversal vulnerability in config.inc.php in phpAbook 0.8.8b and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the userInfo cookie.
Phpabook Phpabook
Phpabook Phpabook 0.8.7b
Phpabook Phpabook 0.8.6b
Phpabook Phpabook 0.8.4b
1 EDB exploit
NA
CVE-2008-4606
Multiple SQL injection vulnerabilities in IP Reg 0.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) location_id parameter to locationdel.php and (2) vlan_id parameter to vlanedit.php. NOTE: the vlanview.php and vlandel.php vectors...
Ip Reg Ip Reg 0.3
1 EDB exploit
NA
CVE-2008-4643
SQL injection vulnerability in hits.php in myWebland myStats allows remote malicious users to execute arbitrary SQL commands via the sortby parameter.
Mywebland Mystats
1 EDB exploit
NA
CVE-2008-4644
hits.php in myWebland myStats allows remote malicious users to bypass IP address restrictions via a modified X-Forwarded-For HTTP header.
Mywebland Mystats
1 EDB exploit
NA
CVE-2008-4662
Directory traversal vulnerability in admin.php in LokiCMS 0.3.4, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Lokicms Lokicms 0.3.4
1 EDB exploit
NA
CVE-2008-0835
SQL injection vulnerability in indexen.php in Simple CMS 1.0.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the area parameter.
Simple Cms Simple Cms 1.0.3
1 EDB exploit
NA
CVE-2008-0253
SQL injection vulnerability in full_text.php in Binn SBuilder allows remote malicious users to execute arbitrary SQL commands via the nid parameter.
Binn Sbuilder
1 EDB exploit
NA
CVE-2008-0361
Directory traversal vulnerability in agregar_info.php in GradMan 0.1.3 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the tabla parameter.
Instituto Politicnico Nacional Gradman
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »