Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2006-1778
Multiple SQL injection vulnerabilities in Jeremy Ashcraft Simplog 0.9.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) blogid parameter in (a) index.php and (b) archive.php, the (2) m and (3) y parameters in archive.php, and the (...
Simplog Simplog
1 EDB exploit
515
VMScore
CVE-2006-1784
PHP remote file inclusion vulnerability in admin/configset.php in Sphider 1.3 and previous versions, when register_globals is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the settings_dir parameter.
Sphider Sphider 1.3
Sphider Sphider 1.3 Rc1
Sphider Sphider 1.3 Rc2
1 EDB exploit
755
VMScore
CVE-2009-3967
SQL injection vulnerability in browse.php in Ed Charkow SuperCharged Linking allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ed Charkow Supercharged Linking
1 EDB exploit
755
VMScore
CVE-2007-0233
wp-trackback.php in WordPress 2.0.6 and previous versions does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote malicious users to execute arbitrary SQL commands vi...
Wordpress Wordpress 0.6.2
Wordpress Wordpress 0.7
Wordpress Wordpress 1.5.1.3
Wordpress Wordpress 1.5.2
Wordpress Wordpress 2.0.6
Wordpress Wordpress 0.6.2.1
Wordpress Wordpress 1.5.1
Wordpress Wordpress 1.5.1.2
Wordpress Wordpress 2.0.4
Wordpress Wordpress 2.0.5
Wordpress Wordpress 0.71
Wordpress Wordpress 1.2
Wordpress Wordpress 1.2.1
Wordpress Wordpress 2.0
Wordpress Wordpress 2.0.1
Wordpress Wordpress 1.2.2
Wordpress Wordpress 1.5
Wordpress Wordpress 2.0.2
Wordpress Wordpress 2.0.3
1 EDB exploit
505
VMScore
CVE-2005-4095
Directory traversal vulnerability in connector.php in the fckeditor2rc2 addon in DoceboLMS 2.0.4 allows remote malicious users to list arbitrary files and directories via ".." sequences in the Type parameter in a GetFoldersAndFiles command.
Docebolms Docebolms 2.0.4
1 EDB exploit
755
VMScore
CVE-2005-4155
registration.PHP in ATutor 1.5.1 pl2 allows remote malicious users to execute arbitrary SQL commands via an e-mail address that ends in a NULL character, which bypasses the PHP regular expression check. NOTE: it is possible that this is actually a bug in PHP code, in which case t...
Adaptive Technology Resource Centre Atutor 1.5.1 Pl2
1 EDB exploit
755
VMScore
CVE-2005-4171
The "Upload new image" command in the "Manage Images" eFiction 1.1, when members are allowed to upload images, allows remote malicious users to execute arbitrary PHP code by uploading a filename with a .php extension that contains a GIF header, which passes th...
Efiction Project Efiction 1.1
1 EDB exploit
755
VMScore
CVE-2006-6880
Multiple SQL injection vulnerabilities in code/guestadd.php in PHP-Update 2.7 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) newmessage, (2) newname, (3) newwebsite, or (4) newemail parameter.
Php-update Php-update
1 EDB exploit
755
VMScore
CVE-2006-6966
phpGraphy prior to 0.9.13a does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote malicious users to execute arbitrary PHP code by uploading a config.php file via th...
Phpgraphy Phpgraphy 0.9
Phpgraphy Phpgraphy 0.9.1
Phpgraphy Phpgraphy 0.9.4
Phpgraphy Phpgraphy 0.9.5
Phpgraphy Phpgraphy 0.9.11
Phpgraphy Phpgraphy 0.9.12
Phpgraphy Phpgraphy 0.9.8
Phpgraphy Phpgraphy 0.9.9
Phpgraphy Phpgraphy 0.9.2
Phpgraphy Phpgraphy 0.9.3
Phpgraphy Phpgraphy 0.9.9a
Phpgraphy Phpgraphy
Phpgraphy Phpgraphy 0.9.10
Phpgraphy Phpgraphy 0.9.10a
Phpgraphy Phpgraphy 0.9.6
Phpgraphy Phpgraphy 0.9.7
1 EDB exploit
755
VMScore
CVE-2006-1149
PHP remote file inclusion vulnerability in lib/OWL_API.php in OWL Intranet Engine 0.82, when register_globals is enabled, allows remote malicious users to include arbitrary files via a URL in the xrms_file_root parameter, which is not initialized before use.
Owl Owl Intranet Engine 0.6
Owl Owl Intranet Engine 0.72
Owl Owl Intranet Engine 0.73
Owl Owl Intranet Engine 0.8
Owl Owl Intranet Engine 0.82
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »