Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cracker vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-6579
A vulnerability, which was classified as critical, has been found in osCommerce 4. Affected by this issue is some unknown functionality of the file /b2b-supermarket/shopping-cart of the component POST Parameter Handler. The manipulation of the argument estimate[country_id] leads ...
Oscommerce Oscommerce 4.0
NA
CVE-2006-3474
Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote malicious users to execute arbitrary SQL commands via the (1) cat_id parameter to (a) gbrowse.php, (2) card_id parameter to (b) rating.php and (c) create.php, and the (3) event_id parameter to (d) s...
Belchior Foundry Vcard Pro
4 EDB exploits
NA
CVE-2006-2973
Multiple SQL injection vulnerabilities in month.php in PHP Lite Calendar Express 2.2 allow remote malicious users to execute arbitrary SQL commands via the (1) catid and (2) cid parameter. NOTE: this might be a duplicate of CVE-2005-4009.c.
Php Lite Calendar Express 2.2
1 EDB exploit
NA
CVE-2006-6551
PHP remote file inclusion vulnerability in libs/tucows/api/cartridges/crt_TUCOWS_domains/lib/domainutils.inc.php in Tucows Client Code Suite (CCS) 1.2.1015 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the _ENV[TCA_HOME] parameter.
Tucows Client Code Suite 1.2.1015
1 EDB exploit
NA
CVE-2006-6553
PHP remote file inclusion vulnerability in includes/newssuite_constants.php in the NewsSuite 1.03 module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mxbb Newssuite 1.03
1 EDB exploit
NA
CVE-2006-6567
PHP remote file inclusion vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
NA
CVE-2006-6877
Directory traversal vulnerability in index.php in Matteo Lucarelli 3editor CMS 0.42 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via a .. (dot dot) in the page parameter.
Matteo Lucarelli 3editor Cms
1 EDB exploit
NA
CVE-2007-0508
PHP remote file inclusion vulnerability in lib/selectlang.php in BBClone 0.31 allows remote malicious users to execute arbitrary PHP code via a URL in the BBC_LANGUAGE_PATH parameter.
Bbclone Bbclone 0.31
1 EDB exploit
NA
CVE-2006-6568
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the phpEx parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
NA
CVE-2006-6711
PHP remote file inclusion vulnerability in compteur/mapage.php in Newxooper 0.9.1 allows remote malicious users to execute arbitrary PHP code via a URL in the chemin parameter.
Newxooper Newxooper 0.9.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »