Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 3.0 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-44075
Cross Site Scripting vulnerability in Small CRM in PHP v.3.0 allows a remote malicious user to execute arbitrary code via a crafted payload to the Address parameter.
Small Crm Project Small Crm 3.0
5.4
CVSSv3
CVE-2018-6796
PHP Scripts Mall Multilanguage Real Estate MLM Script 3.0 has Stored XSS via every profile input field.
Multilanguage Real Estate Mlm Script Project Multilanguage Real Estate Mlm Script 3.0
4.8
CVSSv3
CVE-2020-20699
A cross site scripting (XSS) vulnerability in S-CMS PHP v3.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload entered into the Copyright text box under Basic Settings.
S-cms S-cms 3.0
4.8
CVSSv3
CVE-2020-20700
A stored cross site scripting (XSS) vulnerability in /app/form_add/of S-CMS PHP v3.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload entered into the Title Entry text box.
S-cms S-cms 3.0
4.8
CVSSv3
CVE-2020-20701
A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
S-cms S-cms 3.0
4.4
CVSSv3
CVE-2019-1600
A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local malicious user to access sensitive information that is stored in the file system of an affected system. The vulnerability is due to improper implemen...
Cisco Firepower Extensible Operating System
Cisco Nx-os
NA
CVE-2024-5407
A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow a remote malicious user to perform a reverse shell on the remote system, compromising the entire infrastructure.
NA
CVE-2015-5501
The Hostmaster (Aegir) module 6.x-2.x prior to 6.x-2.4 and 7.x-3.x prior to 7.x-3.0-beta2 for Drupal allows remote malicious users to execute arbitrary PHP code via a crafted file in the directory used to write Apache vhost files for hosted sites in a multi-site environment.
Aegirproject Hostmaster 6.x-3.0
Aegirproject Hostmaster 6.x-2.1
Aegirproject Hostmaster 6.x-2.0
Aegirproject Hostmaster 6.x-2.3
Aegirproject Hostmaster 6.x-2.2
NA
CVE-2014-2268
views/Index.php in the Install module in vTiger 6.0 before Security Patch 2 does not properly restrict access, which allows remote malicious users to re-install the application via a request that sets the X-Requested-With HTTP header, as demonstrated by executing arbitrary PHP co...
Vtiger Vtiger Crm 5.0.3
Vtiger Vtiger Crm 5.0.1
Vtiger Vtiger Crm 5.3.0
Vtiger Vtiger Crm 5.1.0
Vtiger Vtiger Crm 5.2.0
Vtiger Vtiger Crm 2.0.1
Vtiger Vtiger Crm 2.0
Vtiger Vtiger Crm 4.2
Vtiger Vtiger Crm 5.0.4
Vtiger Vtiger Crm 6.0.0
Vtiger Vtiger Crm 5.4.0
Vtiger Vtiger Crm 2.1
Vtiger Vtiger Crm 4
Vtiger Vtiger Crm 4.0
Vtiger Vtiger Crm 3.0
Vtiger Vtiger Crm 5.0.0
Vtiger Vtiger Crm 5.0.2
Vtiger Vtiger Crm 3.2
Vtiger Vtiger Crm 1.0
Vtiger Vtiger Crm 4.2.4
Vtiger Vtiger Crm 5.2.1
Vtiger Vtiger Crm 4.0.1
1 EDB exploit
NA
CVE-2014-5324
Unrestricted file upload vulnerability in the N-Media file uploader plugin prior to 3.4 for WordPress allows remote authenticated users to execute arbitrary PHP code by leveraging Author privileges to store a file.
Najeebmedia N-media File Uploader 3.2
Najeebmedia N-media File Uploader 3.1
Najeebmedia N-media File Uploader 3.0
Najeebmedia N-media File Uploader
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30065
CVE-2024-5843
CVE-2024-30080
code execution
CVE-2024-4577
CVE-2024-26169
wireless
remote code execution
CVE-2024-36103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »