Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
darkfig vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0986
PHP remote file inclusion vulnerability in index.php in Jupiter CMS 1.1.5, when PHP 5.0.0 or later is used, allows remote malicious users to execute arbitrary PHP code via an ftp URL in the n parameter.
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
NA
CVE-2007-0987
Directory traversal vulnerability in index.php in Jupiter CMS 1.1.5 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot), or an absolute pathname, in the n parameter.
Jupiter Cms Jupiter Cms 1.1.5
1 EDB exploit
NA
CVE-2006-5259
PHP remote file inclusion vulnerability in param_editor.php in Compteur 2 allows remote malicious users to execute arbitrary PHP code via a URL in the folder parameter.
Compteur Compteur 2
1 EDB exploit
NA
CVE-2006-5320
Directory traversal vulnerability in getimg.php in Album Photo Sans Nom 1.6 allows remote malicious users to read arbitrary files via the img parameter.
Morian Album Photo Sans Nom 1.6
1 EDB exploit
NA
CVE-2006-6755
Ixprim 1.2 allows remote malicious users to obtain sensitive information via a direct request for kernel/plugins/fckeditor2/ixprim_api.php, which reveals the path in an error message.
Ixprim Ixprim Cms 1.2
1 EDB exploit
NA
CVE-2006-6849
administration/index.php in Cahier de texte (CDT) 2.2 does not properly exit when authentication fails, which allows remote malicious users to perform unauthorized administrative actions.
Cahier De Textes Cahier De Textes 2.2
1 EDB exploit
NA
CVE-2006-6280
SQL injection vulnerability in viewthread.php in Oxygen (O2PHP Bulletin Board) 1.1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the pid parameter, a different vector than CVE-2006-1572.
O2php.com Oxygen
1 EDB exploit
NA
CVE-2007-0598
SQL injection vulnerability in forum/load.php in Aztek Forum 4.00 allows remote malicious users to execute arbitrary SQL commands via the fid cookie to forum.php.
Aztek Forum Aztek Forum 4.0
1 EDB exploit
NA
CVE-2006-6254
administration/telecharger.php in Cahier de texte 2.0 allows remote malicious users to obtain unparsed content (source code) of files via the chemin parameter, as demonstrated using directory traversal sequences to obtain the MySQL username and password from conn_cahier_de_texte....
Cahier De Textes Cahier De Textes
Cahier De Textes Cahier De Textes 2.0
1 EDB exploit
NA
CVE-2006-4479
Cross-site scripting (XSS) vulnerability in loginreq2.php in Visual Shapers ezContents 2.0.3 allows remote malicious users to inject arbitrary web script or HTML via the subgroupname parameter.
Visualshapers Ezcontents 2.0.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »