Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
the tiger vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2663
PHP remote file inclusion vulnerability in language/1/splash.lang.php in Beacon 0.2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the languagePath parameter.
Beacon Beacon 0.2.0
1 EDB exploit
NA
CVE-2007-2986
PHP remote file inclusion vulnerability in lib/live_status.lib.php in AdminBot MX 9.0.5 allows remote malicious users to execute arbitrary PHP code via a URL in the ROOT parameter.
Nexen Adminbot Mx 9.0.5
1 EDB exploit
NA
CVE-2007-4806
PHP remote file inclusion vulnerability in modules/Discipline/CategoryBreakdownTime.php in Focus/SIS 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the FocusPath parameter.
Focus Sis Focus Sis 2.2
Focus Sis Focus Sis 1.0
1 EDB exploit
NA
CVE-2009-1638
Techno Dreams Job Career Package 3.0 allows remote malicious users to bypass authentication and obtain administrative access by setting the JobCareerAdmin cookie to Login.
T-dreams Job Career Package 3.0
1 EDB exploit
NA
CVE-2009-1651
SQL injection vulnerability in admin/member_details.php in 2daybiz Business Community Script allows remote malicious users to execute arbitrary SQL commands via the mid parameter.
2daybiz Business Community Script
1 EDB exploit
NA
CVE-2009-1610
admin/changepassword.php in Job Script Job Board Software 2.0 allows remote malicious users to change the administrator password and gain administrator privileges via a direct request.
Jobscript Job Script Job Board Software 2.0
1 EDB exploit
NA
CVE-2009-2604
Multiple SQL injection vulnerabilities in adminlogin.asp in Zen Help Desk 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) userid (aka username) and (2) PassWord parameters to admin.asp.
Zenhelpdesk Zen Help Desk 2.1
1 EDB exploit
NA
CVE-2009-1767
admin/edituser.php in 2daybiz Template Monster Clone does not require administrative authentication, which allows remote malicious users to modify arbitrary accounts via the (1) loginname, (2) password, (3) email, (4) firstname, or (5) lastname parameter.
2daybiz Template Monster Clone -
1 EDB exploit
NA
CVE-2006-7127
Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 and 4.0 RC2 allow remote malicious users to execute arbitrary PHP code via a URL in the main_dir parameter to (1) forum/main.php and (2) forum/headlines.php.
Salims Softhouse Jaf Cms 4.0
2 EDB exploits
NA
CVE-2007-2817
SQL injection vulnerability in read/index.php in ol'bookmarks 0.7.4 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ol Bookmarks Ol Bookmarks 0.7.4
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »