Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php group vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2006-1770
Multiple PHP remote file inclusion vulnerabilities in Azerbaijan Design & Development Group (AZDG) AzDGVote allow remote malicious users to execute arbitrary PHP code via a URL in the int_path parameter in (1) vote.php, (2) view.php, (3) admin.php, and (4) admin/index.php.
Azerbaijan Development Group Azdgvote 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-5562
PHP remote file inclusion vulnerability in include/database.php in SourceForge (aka alexandria) 1.0.4 allows remote malicious users to execute arbitrary PHP code via the sys_dbtype parameter.
Open Source Technology Group Sourceforge 1.0.4
1 EDB exploit
6.5
CVSSv2
CVE-2006-1895
Direct static code injection vulnerability in includes/template.php in phpBB allows remote authenticated users with write access to execute arbitrary PHP code by modifying a template in a way that (1) bypasses a loose ".*" regular expression to match BEGIN and END state...
Phpbb Group Phpbb 2.0.9
6.4
CVSSv2
CVE-2006-2150
PHP remote file inclusion vulnerability in top/list.php in phpBB TopList 1.3.8 and previous versions allows remote malicious users to include arbitrary files via the returnpath parameter.
Phpbb Group Phpbb Toplist 1.3.8
6
CVSSv2
CVE-2006-1896
Unspecified vulnerability in phpBB allows remote authenticated users with Administration Panel access to execute arbitrary PHP code via crafted Font Colour 3 ($theme[fontcolor3] variable) and/or signature values, possibly involving the highlight functionality. NOTE: the original ...
Phpbb Group Phpbb
7.5
CVSSv2
CVE-2006-2152
PHP remote file inclusion vulnerability in admin/addentry.php in phpBB Advanced Guestbook 2.4.0 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via the phpbb_root_path parameter.
Phpbb Group Phpbb Advanced Guestbook
1 EDB exploit
6.8
CVSSv2
CVE-2007-0881
PHP remote file inclusion vulnerability in the Seitenschutz plugin for OPENi-CMS 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) config[oi_dir] and possibly (2) config[openi_dir] parameters to open-admin/plugins/site_protection/index.php. NOTE...
Openi-cms Group Openi-cms 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2005-2951
Directory traversal vulnerability in security.inc.php in AzDGDatingLite 2.1.3, and possibly earlier versions, allows remote malicious users to execute arbitrary PHP commands via ".." sequences and "%00" (trailing null byte) characters in the l parameter, which...
Azerbaijan Development Group Azdgdating 2.1.3
1 EDB exploit
4.3
CVSSv2
CVE-2008-2566
Multiple cross-site scripting (XSS) vulnerabilities in PHP Address Book 3.1.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the group parameter to (1) index.php or (2) the default URI.
Php-address Book Php-address Book
2 EDB exploits
7.5
CVSSv2
CVE-2002-0717
PHP 4.2.0 and 4.2.1 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which generates an error condition that is not properly handled and causes improper me...
Php Php 4.2.0
Php Php 4.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »