Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2008-4329
PHP remote file inclusion vulnerability in cms/system/openengine.php in openEngine 2.0 beta4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the oe_classpath parameter.
Openengine Openengine 1.9 Beta2
Openengine Openengine 1.8 Beta2
Openengine Openengine 1.7.1
Openengine Openengine 1.9 Beta1
Openengine Openengine 1.9 Beta3
Openengine Openengine
1 EDB exploit
1000
VMScore
CVE-2008-4138
PHP remote file inclusion vulnerability in skin_shop/standard/3_plugin_twindow/twindow_notice.php in TECHNOTE 7 allows remote malicious users to execute arbitrary PHP code via a URL in the shop_this_skin_path parameter.
Technote Technote 7
1 EDB exploit
1000
VMScore
CVE-2008-3455
PHP remote file inclusion vulnerability in include/admin.php in JnSHosts PHP Hosting Directory 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the rd parameter.
Jnshosts Php Hosting Directory 2.0
1 EDB exploit
1000
VMScore
CVE-2008-2888
Multiple PHP remote file inclusion vulnerabilities in MiGCMS 2.0.5, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[application][app_root] parameter to (1) collection.class.php and (2) content_image.class.php i...
Migcms Migcms 2.0.5
1 EDB exploit
1000
VMScore
CVE-2008-2689
PHP remote file inclusion vulnerability in pub/clients.php in BrowserCRM 5.002.00 allows remote malicious users to execute arbitrary PHP code via a URL in the bcrm_pub_root parameter.
Browsercrm Browsercrm 5.002.00
1 EDB exploit
1000
VMScore
CVE-2008-2638
Static code injection vulnerability in guestbook.php in 1Book 1.0.1 and previous versions allows remote malicious users to upload arbitrary PHP code via the message parameter in an HTML webform, which is written to data.php.
1-script 1-book
1 EDB exploit
1000
VMScore
CVE-2008-2480
PHP remote file inclusion vulnerability in plus.php in plusPHP Short URL Multi-User Script 1.6 allows remote malicious users to execute arbitrary PHP code via a URL in the _pages_dir parameter.
Plusphp Plusphp Short Url Multi-user Script 1.6
1 EDB exploit
1000
VMScore
CVE-2008-2481
PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the pConfig_auth[phpbb_path] parameter.
Phpraider Phpraider 1.0.7a
Phpraider Phpraider 1.0.7
1 EDB exploit
1000
VMScore
CVE-2008-2192
Static code injection vulnerability in box/minichat/boxpop.php in IT!CMS (aka itcms) 1.9 allows remote malicious users to inject arbitrary PHP code into box/MiniChat/data/shouts.php via the shout parameter.
Itcms Itcms 1.9
1 EDB exploit
1000
VMScore
CVE-2008-1989
PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the e107path parameter.
E107 E107
123flashchat 123 Flash Chat Module 6.8.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »