Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5894
Directory traversal vulnerability in lang.php in Rama CMS 0.68 and previous versions, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang cookie, as demonstrated by injecting PHP sequences int...
Rama Cms Rama Cms
1 EDB exploit
NA
CVE-2006-6445
Directory traversal vulnerability in error.php in Envolution 1.1.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the PNSVlang (PNSV lang) parameter, as demonstrated by injecting PHP sequences into an Apache ...
Envolution Envolution 1.1.0
1 EDB exploit
NA
CVE-2006-4960
Cross-site scripting (XSS) vulnerability in index.php Php Blue Dragon 2.9.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the m parameter, which is reflected in an error message resulting from a failed SQL query.
Blue Dragon Php Blue Dragon Platinum 2.8.0
Blue Dragon Php Blue Dragon Platinum 2.9.1
1 EDB exploit
NA
CVE-2006-4961
SQL injection vulnerability in the GetModuleConfig function in public_includes/pub_kernel/pbd_modules.php in Php Blue Dragon 2.9.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the m parameter to index.php.
Blue Dragon Php Blue Dragon Platinum 2.9.1
Blue Dragon Php Blue Dragon Platinum 2.8.0
1 EDB exploit
NA
CVE-2006-5020
Multiple PHP remote file inclusion vulnerabilities in SolidState 0.4 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the base_path parameter in manager/pages/ scripts including (1) AccountsPage.class.php, (2) AddInvoicePage.class.php,...
Solidstate Solidstate
1 EDB exploit
NA
CVE-2006-5079
PHP remote file inclusion vulnerability in class.mysql.php in Matt Humphrey paBugs 2.0 Beta 3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path_to_bt_dir parameter.
Php Arena Pabugs
1 EDB exploit
NA
CVE-2006-5167
Multiple PHP remote file inclusion vulnerabilities in BasiliX 1.1.1 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) BSX_LIBDIR parameter in scripts in /files/ including (a) abook.php3, (b) compose-attach.php3, (c) compose-menu...
Basilix Basilix Webmail
Basilix Basilix Webmail 1.03 Beta
Basilix Basilix Webmail 1.1.0
Basilix Basilix Webmail 0.9.7 Beta
Basilix Basilix Webmail 1.02 Beta
1 EDB exploit
NA
CVE-2007-1612
SQL injection vulnerability in index.php in Katalog Plyt Audio 1.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the kolumna parameter.
Katalog Plyt Audio Katalog Plyt Audio
1 EDB exploit
NA
CVE-2007-1920
SQL injection vulnerability in index.php in the aktualnosci module in SmodBIP 1.06 and previous versions allows remote malicious users to execute arbitrary SQL commands via the zoom parameter, possibly related to home.php.
Smodbip Smodbip
1 EDB exploit
NA
CVE-2007-1931
SQL injection vulnerability in index.php in the slownik module in SmodCMS 2.10 and previous versions allows remote malicious users to execute arbitrary SQL commands via the ssid parameter.
Smodcms Smodcms
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »