Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cobra_21 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2009-4870
Multiple SQL injection vulnerabilities in login.php in PHPCityPortal allow remote malicious users to execute arbitrary SQL commands via the (1) req_username (aka Username) and (2) req_password (aka Password) parameters. NOTE: some of these details are obtained from third party in...
Phpcityportal Phpcityportal
NA
CVE-2008-6318
PHP remote file inclusion vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote malicious users to execute arbitrary PHP code via a URL in the admindir parameter, a different vector than CVE-2008-6317.
Phpmygallery Phpmygallery 1.5
NA
CVE-2008-6388
Rapid Classified 3.1 and 3.15 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database file via a direct request to cldb.mdb.
4u2ges Rapid Classified 3.14u2ges Rapid Classified 3.15
NA
CVE-2009-3056
PHP remote file inclusion vulnerability in include/engine/content/elements/menu.php in KingCMS 0.6.0 allows remote malicious users to execute arbitrary PHP code via a URL in the CONFIG[AdminPath] parameter.
Bas Bloemsaat Kingcms 0.6.0
NA
CVE-2010-1925
SQL injection vulnerability in makale.php in tekno.Portal 0.1b allows remote malicious users to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-2817.
Rifat Kurban Tekno.portal 0.1b
NA
CVE-2010-2926
SQL injection vulnerability in index.php in sNews 1.7 allows remote malicious users to execute arbitrary SQL commands via the category parameter.
Solucija Snews 1.7
NA
CVE-2008-6357
MyCal Personal Events Calendar stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing the username and password via a direct request to mycal.mdb.
Donnafontenot Mycal Personal Events Calendar -
NA
CVE-2009-4626
Directory traversal vulnerability in menu.php in phpNagios 1.2.0 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the conf[lang] parameter.
Phpnagios Phpnagios 1.2.0
NA
CVE-2009-3188
PHP remote file inclusion vulnerability in save.php in phpSANE 0.5.0 allows remote malicious users to execute arbitrary PHP code via a URL in the file_save parameter.
David Frohlich Phpsane 0.5.0
NA
CVE-2009-3064
Directory traversal vulnerability in debugger/debug_php.php in Ve-EDIT 0.1.4 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the _GET[filename] parameter.
Rein Velt Vedit 01.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook