Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cracker vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1051
PHP remote file inclusion vulnerability in include/body_comm.inc.php in phpProfiles 4.5.2 BETA allows remote malicious users to execute arbitrary PHP code via a URL in the content parameter.
Phpprofiles Phpprofiles 4.5.2
1 EDB exploit
NA
CVE-2008-2885
PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the CLASSES_R...
Odars Odars 1.0.2
1 EDB exploit
NA
CVE-2007-6585
PHP remote file inclusion vulnerability in confirmUnsubscription.php in NmnNewsletter 1.0.7 allows remote malicious users to execute arbitrary PHP code via a URL in the output parameter.
Nmnnewsletter Nmnnewsletter 1.0.7
1 EDB exploit
NA
CVE-2008-2888
Multiple PHP remote file inclusion vulnerabilities in MiGCMS 2.0.5, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[application][app_root] parameter to (1) collection.class.php and (2) content_image.class.php i...
Migcms Migcms 2.0.5
1 EDB exploit
NA
CVE-2008-2898
Directory traversal vulnerability in includes/header.php in Hedgehog-CMS 1.21 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the c_temp_path parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by...
Hedgehog-cms Hedgehog-cms 1.21
1 EDB exploit
NA
CVE-2008-2973
Multiple cross-site scripting (XSS) vulnerabilities in chathead.php in MM Chat 1.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) sitename and (2) wmessage parameters.
Mm Chat Mm Chat 1.5
1 EDB exploit
NA
CVE-2008-2974
Directory traversal vulnerability in chatconfig.php in MM Chat 1.5, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the currentlang parameter.
Mm Chat Mm Chat 1.5
1 EDB exploit
NA
CVE-2008-2975
Cross-site scripting (XSS) vulnerability in admin/objects/obj_image.php in TinX/cms 1.1 allows remote malicious users to inject arbitrary web script or HTML via the language parameter.
Tinx Cms Tinx Cms 1.1
1 EDB exploit
NA
CVE-2008-2978
Directory traversal vulnerability in phpi/rss.php in Ourvideo CMS 9.5, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the prefix parameter.
Ourvideocms Ourvideo Cms 9.5
1 EDB exploit
NA
CVE-2008-2984
Cross-site scripting (XSS) vulnerability in backend/umleitung.php in CMReams CMS 1.3.1.1 Beta 2 allows remote malicious users to inject arbitrary web script or HTML via the lang[be_red_text] parameter.
Cmreams Cmreams Cms 1.3.1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »