Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cr4wl3r vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2010-2137
PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Giaard Proman
Giaard Proman 0.1.0
1 EDB exploit
685
VMScore
CVE-2010-1936
Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to...
Openmairie Opencominterne 1.01
1 EDB exploit
755
VMScore
CVE-2010-0611
Multiple SQL injection vulnerabilities in adminlogin.php in Baal Systems 3.8 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Baalsystems Baal Systems 3.7
Baalsystems Baal Systems 3.6
Baalsystems Baal Systems
1 EDB exploit
755
VMScore
CVE-2009-3324
PHP remote file inclusion vulnerability in include/prodler.class.php in ProdLer 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the sPath parameter.
Andres G Aragoneses Prodler
Andres G Aragoneses Prodler 1.1
1 EDB exploit
685
VMScore
CVE-2010-1737
PHP remote file inclusion vulnerability in core/includes/gfw_smarty.php in Gallo 0.1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the config[gfwroot] parameter.
Carlos Eduardo Sotelo Pinto 0.1.0
1 EDB exploit
435
VMScore
CVE-2010-1742
Cross-site scripting (XSS) vulnerability in projects.php in Scratcher allows remote malicious users to inject arbitrary web script or HTML via the show parameter.
Satyadeep Scratcher
1 EDB exploit
685
VMScore
CVE-2010-1928
Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to C...
Openmairie Openplanning 1.00
1 EDB exploit
685
VMScore
CVE-2010-1346
SQL injection vulnerability in admin/login.php in Mini CMS RibaFS 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the login parameter. NOTE: some of these details are obtained from third party information.
Ribafs Mini Cms Ribafs 1.0
1 EDB exploit
755
VMScore
CVE-2010-1366
Multiple SQL injection vulnerabilities in admin/admin_login.php in Uiga Fan Club 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) admin_name and (2) admin_password parameters.
Uiga Fan Club 1.0
1 EDB exploit
685
VMScore
CVE-2010-1466
Directory traversal vulnerability in scr/soustab.php in openUrgence Vaccin 1.03 allows remote malicious users to read arbitrary files via the dsn[phptype] parameter.
Francois Raynaud Openurgence Vaccin 1.03
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »