Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crackers_child vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5535
Multiple cross-site scripting (XSS) vulnerabilities in WebHostManager (WHM) 10.8.0 cPanel 10.9.0 R50 allow remote malicious users to inject arbitrary web script or HTML via the (1) theme parameter to scripts/dosetmytheme and the (2) template parameter to scripts2/editzonetemplate...
Cpanel Cpanel 10.9.0 R50
2 EDB exploits
NA
CVE-2007-1715
PHP remote file inclusion vulnerability in frontpage.php in Free Image Hosting 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the AD_BODY_TEMP parameter. NOTE: the forgot_pass.php vector is already covered by CVE-2006-5670, and ...
Free Php Scripts Free Image Hosting 1.0
Free Php Scripts Free Image Hosting 2.0
1 EDB exploit
NA
CVE-2007-3133
SQL injection vulnerability in urunbak.asp in W1L3D4 WEBmarket 0.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
W1l3d4 Webmarket 0.1
1 EDB exploit
NA
CVE-2007-6129
Directory traversal vulnerability in scripts/include/show_content.php in Amber Script 1.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the id parameter. NOTE: in some environments, this can be leveraged for remote file inclusion...
Amber Script Amber Script 1.0
1 EDB exploit
NA
CVE-2007-1714
Cross-site scripting (XSS) vulnerability in index.php in CcCounter 2.0 allows remote malicious users to inject arbitrary web script or HTML via dir parameter.
Cccounter Cccounter 2.0
1 EDB exploit
NA
CVE-2008-4176
SQL injection vulnerability in izle.asp in FoT Video scripti 1.1 beta allows remote malicious users to execute arbitrary SQL commands via the oyun parameter.
Asp Indir Fot Video Scripti 1.1
1 EDB exploit
NA
CVE-2008-6736
Flat Calendar 1.1 does not properly restrict access to administrative functions, which allows remote malicious users to (1) add new events via calAdd.php, as reachable from admin/add.php, or (2) delete events via admin/deleteEvent.php. NOTE: this is only a vulnerability when the ...
Circulargenius Flat Calendar 1.1
1 EDB exploit
NA
CVE-2006-5251
PHP remote file inclusion vulnerability in index.php in Deep CMS 2.0a allows remote malicious users to execute arbitrary PHP code via a URL in the ConfigDir parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Deep Cms Deep Cms 2.0a
1 EDB exploit
NA
CVE-2008-0907
SQL injection vulnerability in the Inhalt module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Php-nuke Inhalt Module
1 EDB exploit
NA
CVE-2007-2485
PHP remote file inclusion vulnerability in myflash-button.php in the myflash 1.00 and previous versions plugin for WordPress allows remote malicious users to execute arbitrary PHP code via a URL in the wpPATH parameter.
Ruben Boelinger Myflash
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »