Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
3l3ctric-cracker vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-6551
PHP remote file inclusion vulnerability in libs/tucows/api/cartridges/crt_TUCOWS_domains/lib/domainutils.inc.php in Tucows Client Code Suite (CCS) 1.2.1015 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the _ENV[TCA_HOME] parameter.
Tucows Client Code Suite 1.2.1015
1 EDB exploit
10
CVSSv2
CVE-2006-6567
PHP remote file inclusion vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
5
CVSSv2
CVE-2006-6203
Directory traversal vulnerability in startdown.php in the Flyspray ME 1.0.1 (com_flyspray) component for Mambo allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Krishan Flyspray Me 1.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-6553
PHP remote file inclusion vulnerability in includes/newssuite_constants.php in the NewsSuite 1.03 module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the mx_root_path parameter.
Mxbb Mxbb Newssuite 1.03
1 EDB exploit
7.5
CVSSv2
CVE-2006-6711
PHP remote file inclusion vulnerability in compteur/mapage.php in Newxooper 0.9.1 allows remote malicious users to execute arbitrary PHP code via a URL in the chemin parameter.
Newxooper Newxooper 0.9.1
1 EDB exploit
5
CVSSv2
CVE-2006-6891
Vz (Adp) Forum 2.0.3 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the administrative account name and password hash via a direct request for users/admin.txt.
Vz Forum Vz Forum 2.0.3
1 EDB exploit
6.5
CVSSv2
CVE-2006-6453
PHP remote file inclusion vulnerability in JOWAMP_ShowPage.php in J-OWAMP Web Interface 2.1 allows remote authenticated users to execute arbitrary PHP code via a URL in the link parameter.
J-owamp Web Interface 2.1
1 EDB exploit
10
CVSSv2
CVE-2006-6568
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the phpEx parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
10
CVSSv2
CVE-2007-0495
PHP remote file inclusion vulnerability in include/config.inc.php in PhpSherpa allows remote malicious users to execute arbitrary PHP code via a URL in the racine parameter.
Phpsherpa Phpsherpa
1 EDB exploit
7.5
CVSSv2
CVE-2007-0508
PHP remote file inclusion vulnerability in lib/selectlang.php in BBClone 0.31 allows remote malicious users to execute arbitrary PHP code via a URL in the BBC_LANGUAGE_PATH parameter.
Bbclone Bbclone 0.31
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »