Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2620
PHP remote file inclusion vulnerability in inc/config.inc.php in Jakub Steiner (aka jimmac) original 0.11 allows remote malicious users to execute arbitrary PHP code via a URL in the x[1] parameter.
Jakub Steiner Original 0.11
1 EDB exploit
NA
CVE-2007-2676
PHP remote file inclusion vulnerability in skins/header.php in Open Translation Engine (OTE) 0.7.8 allows remote malicious users to execute arbitrary PHP code via a URL in the ote_home parameter.
Open Translation Engine Open Translation Engine 0.7.8
1 EDB exploit
NA
CVE-2007-2677
Multiple PHP remote file inclusion vulnerabilities in phpChess Community Edition 2.0 allow remote malicious users to execute arbitrary PHP code via a URL in (1) the config parameter to includes/language.php, or the Root_Path parameter to (2) layout_admin_cfg.php, (3) layout_cfg.p...
Phpchess Phpchess 2.0
1 EDB exploit
NA
CVE-2007-4636
Multiple PHP remote file inclusion vulnerabilities in phpBG 0.9.1 allow remote malicious users to execute arbitrary PHP code via a URL in the rootdir parameter to (1) intern/admin/other/backup.php, (2) intern/admin/, (3) intern/clan/member_add.php, (4) intern/config/key_2.php, or...
Phpbg Phpbg 0.9.1
1 EDB exploit
NA
CVE-2007-4640
Unrestricted file upload vulnerability in index.php in Pakupaku CMS 0.4 and previous versions allows remote malicious users to upload and execute arbitrary PHP files in uploads/ via an Uploads action.
Pakupaku Pakupaku Cms
1 EDB exploit
NA
CVE-2007-4641
Directory traversal vulnerability in index.php in Pakupaku CMS 0.4 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter, as demonstrated by injecting code into an Apache log file.
Pakupaku Pakupaku Cms
1 EDB exploit
NA
CVE-2008-1857
Multiple directory traversal vulnerabilities in viewsource.php in Make our Life Easy (Mole) 2.1.0 allow remote malicious users to read arbitrary files via directory traversal sequences in the (1) dirn and (2) fname parameters.
Mole Make Our Life Easy 2.1.0
1 EDB exploit
NA
CVE-2008-0503
Eval injection vulnerability in admin/op/disp.php in Netwerk Smart Publisher 1.0.1 allows remote malicious users to execute arbitrary PHP code via the filedata parameter.
Netwerk Smart Publisher 1.0.1
1 EDB exploit
NA
CVE-2008-0690
SQL injection vulnerability in index.php in the mosDirectory (com_directory) 2.3.2 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a viewcat action.
Joomla Com Directory 2.3.2
1 EDB exploit
NA
CVE-2008-1645
Directory traversal vulnerability in body.php in phpSpamManager (phpSM) 0.53 beta allows remote malicious users to read arbitrary local files via a .. (dot dot) in the filename parameter.
Guillaume Meister Php Spammanager 0.53
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »