Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arbitrary vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-12053
Arbitrary File Deletion exists in PHP Scripts Mall Schools Alert Management Script via the img parameter in delete_img.php by using directory traversal.
Schools Alert Management Script Project Schools Alert Management Script -
1 EDB exploit
NA
CVE-2004-0293
Directory traversal vulnerability in ShopCartCGI 2.3 allows remote malicious users to retrieve arbitrary files via a .. (dot dot) in a HTTP request to (1) gotopage.cgi or (2) genindexpage.cgi.
Shopcartcgi Shopcartcgi 2.3
2 EDB exploits
NA
CVE-2012-1661
ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and previous versions does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote malicious users to execute arbitrary VBA code via a crafted map (.mxd) file.
Esri Arcmap 9.0
Esri Arcgis
Esri Arcgis 9.0
1 EDB exploit
NA
CVE-2005-3507
Directory traversal vulnerability in CuteNews 1.4.1 allows remote malicious users to include arbitrary files, execute code, and gain privileges via "../" sequences in the template parameter to (1) show_archives.php and (2) show_news.php.
Cutephp Cutenews
2 EDB exploits
8.8
CVSSv3
CVE-2017-14704
Multiple unrestricted file upload vulnerabilities in the (1) imageSubmit and (2) proof_submit functions in Claydip Laravel Airbnb Clone 1.0 allow remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct ...
Claydip Airbnb Clone 1.0
1 EDB exploit
NA
CVE-2005-1629
SQL injection vulnerability in member.php for Photopost PHP Pro allows remote malicious users to execute arbitrary SQL commands via the verifykey parameter.
Photopost Photopost Php Pro 4.0
Photopost Photopost Php Pro 3.1
Photopost Photopost Php Pro 4.1
Photopost Photopost Php Pro 5.0 Rc3
Photopost Photopost Php Pro 3.3
Photopost Photopost Php Pro 4.6
Photopost Photopost Php Pro 4.8.1
Photopost Photopost Php Pro 3.2
1 EDB exploit
NA
CVE-2005-0691
PHP remote file inclusion vulnerability in article mode for modules.php in SocialMPN allows remote malicious users to execute arbitrary PHP code by modifying the name parameter to reference a URL on a remote web server that contains the code.
Socialmpn Socialmpn 1.2.3
Socialmpn Socialmpn 1.2.4
Socialmpn Socialmpn 1.2.1
Socialmpn Socialmpn 1.2.2
Socialmpn Socialmpn 1.2.5
1 EDB exploit
NA
CVE-2012-2344
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-5099. Reason: This candidate is a duplicate of CVE-2010-5099. Notes: All CVE users should reference CVE-2010-5099 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
NA
CVE-2004-1456
filediff in CVStrac allows remote malicious users to execute arbitrary commands via shell metacharacters in rcsinfo.
Cvstrac Cvstrac 1.1
Cvstrac Cvstrac 1.1.1
Cvstrac Cvstrac 1.1.3
Cvstrac Cvstrac 1.1.2
1 EDB exploit
7.5
CVSSv3
CVE-2015-4181
Directory traversal vulnerability in get_file.php in phpMyBackupPro 2.1 up to and including 2.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the view parameter. NOTE: the provenance of this information is unknown; the details are obtained solely fro...
Phpmybackuppro Phpmybackuppro 2.3
Phpmybackuppro Phpmybackuppro 2.2
Phpmybackuppro Phpmybackuppro 2.5
Phpmybackuppro Phpmybackuppro 2.1
Phpmybackuppro Phpmybackuppro 2.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »