Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3102
Race condition in articles/BitArticle.php in Bitweaver 1.3, when run on Apache with the mod_mime extension, allows remote malicious users to execute arbitrary PHP code by uploading arbitrary files with double extensions, which are stored for a small period of time under the webro...
Bitweaver Bitweaver 1.3
1 EDB exploit
NA
CVE-2006-3103
Cross-site scripting (XSS) vulnerability in Bitweaver 1.3 allows remote malicious users to inject arbitrary web script or HTML via the (1) error parameter in users/login.php and the (2) feedback parameter in articles/index.php.
Bitweaver Bitweaver 1.3
1 EDB exploit
NA
CVE-2006-3105
CRLF injection vulnerability in Bitweaver 1.3 allows remote malicious users to conduct HTTP response splitting attacks by via CRLF sequences in multiple unspecified parameters that are injected into HTTP headers, as demonstrated by the BWSESSION parameter in index.php.
Bitweaver Bitweaver 1.3
1 EDB exploit
NA
CVE-2006-2405
Directory traversal vulnerability in unb_lib/abbc.conf.php in Unclassified NewsBoard (UNB) 1.6.1 patch 1 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in ...
Unclassified Newsboard Unclassified Newsboard 1.5.3
Unclassified Newsboard Unclassified Newsboard 1.5.3 Patch3
Unclassified Newsboard Unclassified Newsboard 1.5.3a
Unclassified Newsboard Unclassified Newsboard 1.6.1
Unclassified Newsboard Unclassified Newsboard
1 EDB exploit
NA
CVE-2006-2406
Directory traversal vulnerability in bb_lib/abbc.css.php in Unclassified NewsBoard (UNB) 1.5.3-d and possibly earlier versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in ...
Unclassified Newsboard Unclassified Newsboard
1 EDB exploit
NA
CVE-2006-6289
Woltlab Burning Board (wBB) Lite 1.0.2 does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote malicious users to execute arbitrary SQL commands via the wbb_userid pa...
Woltlab Burning Board Lite 1.0.2
1 EDB exploit
NA
CVE-2005-2777
Looking Glass 20040427 allows remote malicious users to execute arbitrary commands via shell metacharacters in the DNS lookup query field.
Looking Glass Looking Glass 2004-04-27
1 EDB exploit
NA
CVE-2005-3929
Directory traversal vulnerability in the create function in xarMLSXML2PHPBackend.php in Xaraya 1.0 allows remote malicious users to create directories and overwrite arbitrary files via ".." sequences in the module parameter to index.php.
Xaraya Xaraya 1.0 Rc3
Xaraya Xaraya 1.0 Rc4
Xaraya Xaraya 1.0 Rc1
Xaraya Xaraya 1.0 Rc2
1 EDB exploit
NA
CVE-2006-1219
Directory traversal vulnerability in Gallery 2.0.3 and previous versions, and 2.1 before RC-2a, allows remote malicious users to include arbitrary PHP files via ".." (dot dot) sequences in the stepOrder parameter to (1) upgrade/index.php or (2) install/index.php.
Gallery Project Gallery 2.0.3
Gallery Project Gallery 2.0 Alpha
Gallery Project Gallery 2.0 Beta3
Gallery Project Gallery 2.1 Rc1
Gallery Project Gallery 2.0
Gallery Project Gallery 2.0 Alpha3
Gallery Project Gallery 2.0 Alpha4
Gallery Project Gallery 2.0 Alpha1
Gallery Project Gallery 2.0 Alpha2
Gallery Project Gallery 2.1 Rc2
Gallery Project Gallery 2.0.1
Gallery Project Gallery 2.0.2
Gallery Project Gallery 2.0 Beta1
Gallery Project Gallery 2.0 Beta2
1 EDB exploit
NA
CVE-2006-1291
publish.ical.php in Jim Hu and Chad Little PHP iCalendar 2.21 and previous versions does not require authentication for write access to the calendars directory, which allows remote malicious users to upload and execute arbitrary PHP scripts via a WebDAV PUT request with a filenam...
Php Icalendar Php Icalendar 2.0
Php Icalendar Php Icalendar 2.0.1
Php Icalendar Php Icalendar 2.0a2
Php Icalendar Php Icalendar 2.0b
Php Icalendar Php Icalendar 2.0c
Php Icalendar Php Icalendar 2.1
Php Icalendar Php Icalendar
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »