Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2156
Multiple PHP remote file inclusion vulnerabilities in Rezervi Generic 0.9 allow remote malicious users to execute arbitrary PHP code via a URL in the root parameter to (1) datumVonDatumBis.inc.php, (2) footer.inc.php, (3) header.inc.php, and (4) stylesheets.php in templates/; and...
Rezervi Generic Rezervi Generic
1 EDB exploit
NA
CVE-2008-4893
Cross-site scripting (XSS) vulnerability in templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php in Tribiq CMS 5.0.10a, when register_globals is enabled, allows remote malicious users to inject arbitrary web script or HTML via the template_path parameter. NOTE: the prov...
Tribiq Tribiq Cms 5.0.10a
1 EDB exploit
NA
CVE-2008-4894
Directory traversal vulnerability in templates/mytribiqsite/tribal-GPL-1066/includes/header.inc.php in Tribiq CMS 5.0.10a, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via directory t...
Tribiq Tribiq Cms 5.0.10a
1 EDB exploit
NA
CVE-2007-6657
PHP remote file inclusion vulnerability in source/includes/load_forum.php in Mihalism Multi Forum Host 3.0.x and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the mfh_root_path parameter.
Mihalism Multi Host
1 EDB exploit
NA
CVE-2008-0690
SQL injection vulnerability in index.php in the mosDirectory (com_directory) 2.3.2 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a viewcat action.
Joomla Com Directory 2.3.2
1 EDB exploit
NA
CVE-2008-0813
Directory traversal vulnerability in Download.php in XPWeb 3.0.1, 3.3.2, and possibly other versions, allows remote malicious users to read arbitrary files via a .. (dot dot) in the url parameter.
Xpweb Xpweb 3.0.1
Xpweb Xpweb 3.3.2
1 EDB exploit
NA
CVE-2008-0814
Directory traversal vulnerability in download.php in Tracking Requirements & Use Cases (TRUC) 0.11.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the upload_filename parameter.
Truc Truc 0.11
1 EDB exploit
NA
CVE-2008-6002
Absolute path traversal vulnerability in sendfile.php in web-cp 0.5.7, when register_globals is enabled, allows remote malicious users to read arbitrary files via a full pathname in the filelocation parameter.
Web-cp Web-cp 0.5.7
1 EDB exploit
NA
CVE-2008-6138
PHP remote file inclusion vulnerability in adminhead.php in WebBiscuits Modules Controller 1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path[docroot] parameter.
Webbiscuits Modules Controller
1 EDB exploit
NA
CVE-2008-1046
PHP remote file inclusion vulnerability in footer.php in Quinsonnas Mail Checker 1.55 allows remote malicious users to execute arbitrary PHP code via a URL in the op[footer_body] parameter.
Quinsonnas Quinsonnas Mail Checker 1.55
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »