Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cracker vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-4382
A vulnerability, which was classified as problematic, has been found in tdevs Hyip Rio 2.1. Affected by this issue is some unknown functionality of the file /user/settings of the component Profile Settings. The manipulation of the argument avatar leads to cross site scripting. Th...
Tdevs Hyip Rio 2.1
9.8
CVSSv3
CVE-2023-4407
A vulnerability classified as critical was found in Codecanyon Credit Lite 1.5.4. Affected by this vulnerability is an unknown functionality of the file /portal/reports/account_statement of the component POST Request Handler. The manipulation of the argument date1/date2 leads to ...
Credit Lite Project Credit Lite 1.5.4
1 Github repository
NA
CVE-2008-5171
Multiple directory traversal vulnerabilities in admin/minibb/index.php in phpBLASTER CMS 1.0 RC1, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the (1) DB, (2) lang, and (3) skin pa...
Phpblaster Phpblaster Cms 1.0
1 EDB exploit
NA
CVE-2009-2182
Multiple PHP remote file inclusion vulnerabilities in Campsite 3.3.0 RC1 allow remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[g_campsiteDir] parameter to (1) ad_popup.php, (2) camp_html.php, (3) init_content.php, (4) logout.php, (5) menu.php, and (6...
Campware.org Campsite 3.3.0
1 EDB exploit
NA
CVE-2009-2183
Directory traversal vulnerability in admin-files/ad.php in Campsite 3.3.0 RC1 allows remote malicious users to read and possibly execute arbitrary local files via a .. (dot dot) in the GLOBALS[g_campsiteDir] parameter.
Campware.org Campsite 3.3.0
1 EDB exploit
NA
CVE-2009-2218
Multiple PHP remote file inclusion vulnerabilities in phpCollegeExchange 0.1.5c, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the home parameter to (1) i_head.php, (2) i_nav.php, (3) user_new_2.php, or (4) house/myrents...
David Degner Phpcollegeexchange 0.1.5c
1 EDB exploit
NA
CVE-2009-2220
Multiple directory traversal vulnerabilities in Tribiq CMS 5.0.12c, when register_globals is enabled and magic_quotes_gpc is disabled, allow remote malicious users to include and possibly execute arbitrary files via directory traversal sequences in the template_path parameter to ...
Tribiq Tribiq Cms 5.0.12c
1 EDB exploit
NA
CVE-2008-1043
PHP remote file inclusion vulnerability in templates/default/header.inc.php in Linux Web Shop (LWS) php User Base 1.3 BETA allows remote malicious users to execute arbitrary PHP code via a URL in the menu parameter.
Linux Web Shop Php User Base 1.3
1 EDB exploit
NA
CVE-2008-1074
PHP remote file inclusion vulnerability in lib/head_auth.php in GROUP-E 1.6.41 allows remote malicious users to execute arbitrary PHP code via a URL in the CFG[PREPEND_FILE] parameter.
Group E Group E 1.6.41
1 EDB exploit
NA
CVE-2008-2871
Multiple cross-site scripting (XSS) vulnerabilities in template2.php in PEGames allow remote malicious users to inject arbitrary web script or HTML via the (1) sitetitle, (2) sitenav, (3) sitemain, and (4) sitealt parameters. NOTE: the provenance of this information is unknown; t...
Pegames Pegames
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »