Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-5332
Multiple PHP remote file inclusion vulnerabilities in Pie 0.5.3 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) lib parameter to files in lib/action/ including (a) alias.php, (b) cancel.php, (c) context.php, (d) deadlinks.php, (e) delete.php, and o...
Pie Pie 0.5.3
1 EDB exploit
10
CVSSv2
CVE-2008-5334
PHP remote file inclusion vulnerability in includes/common.php in NitroTech 0.0.3a allows remote malicious users to execute arbitrary PHP code via a URL in the root parameter.
Nitrotech Nitrotech 0.0.3a
1 EDB exploit
10
CVSSv2
CVE-2008-5090
Electron Inc. Advanced Electron Forum prior to 1.0.7 allows remote malicious users to execute arbitrary PHP code via PHP code embedded in bbcode in the email parameter, which is processed by the preg_replace function with the eval switch.
Anelectron Advanced Electron Forum 1.0.2
Anelectron Advanced Electron Forum 1.0.1
Anelectron Advanced Electron Forum 1.0.4
Anelectron Advanced Electron Forum 1.0.3
Anelectron Advanced Electron Forum
Anelectron Advanced Electron Forum 1.0.5
1 EDB exploit
10
CVSSv2
CVE-2008-5066
PHP remote file inclusion vulnerability in upload/admin/frontpage_right.php in Agares Media ThemeSiteScript 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the loadadminpage parameter.
Agaresmedia Themesitescript 1.0
1 EDB exploit
10
CVSSv2
CVE-2008-5063
PHP remote file inclusion vulnerability in Admin/ADM_Pagina.php in OTManager 2.4 allows remote malicious users to execute arbitrary PHP code via a URL in the Tipo parameter.
Otmanager Otmanager 2.4
1 EDB exploit
10
CVSSv2
CVE-2008-5060
Multiple PHP remote file inclusion vulnerabilities in ModernBill 4.4 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the DIR parameter to (1) export_batch.inc.php, (2) run_auto_suspend.cron.php, and (3) send_email_cache.php in include...
Modernbill Modernbill 2.01
Modernbill Modernbill 2.02s
Modernbill Modernbill 4.1.1
Modernbill Modernbill 4.1.2
Modernbill Modernbill 4.1.3
Modernbill Modernbill 4.0.2
Modernbill Modernbill 3.1.3
Modernbill Modernbill
Modernbill Modernbill 3.0
Modernbill Modernbill 3.1.0
Modernbill Modernbill 4.2.1
Modernbill Modernbill 4.3.0
Modernbill Modernbill 4.0.1
Modernbill Modernbill 4.3.2
1 EDB exploit
10
CVSSv2
CVE-2008-5053
PHP remote file inclusion vulnerability in admin.rssreader.php in the Simple RSS Reader (com_rssreader) 1.0 component for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
Joomla Com Rssreader 1.0
1 EDB exploit
10
CVSSv2
CVE-2008-4704
PHP remote file inclusion vulnerability in SezHooTabsAndActions.php in SezHoo 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the IP parameter.
Mitre Sezhoo 0.1
1 EDB exploit
10
CVSSv2
CVE-2008-4673
PHP remote file inclusion vulnerability in panel/common/theme/default/header_setup.php in WebBiscuits Software Events Calendar 1.1 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) path[docroot] and (2) component parameters.
Webbiscuits Events Calendar 1.1
1 EDB exploit
10
CVSSv2
CVE-2008-4557
plugins/wacko/highlight/html.php in Strawberry in CuteNews.ru 1.1.1 (aka Strawberry) allows remote malicious users to execute arbitrary PHP code via the text parameter, which is inserted into an executable regular expression.
Cutephp Cutenews 1.1.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »