Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0814
Directory traversal vulnerability in download.php in Tracking Requirements & Use Cases (TRUC) 0.11.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the upload_filename parameter.
Truc Truc 0.11
1 EDB exploit
NA
CVE-2008-1046
PHP remote file inclusion vulnerability in footer.php in Quinsonnas Mail Checker 1.55 allows remote malicious users to execute arbitrary PHP code via a URL in the op[footer_body] parameter.
Quinsonnas Quinsonnas Mail Checker 1.55
1 EDB exploit
NA
CVE-2008-1125
Multiple directory traversal vulnerabilities in Podcast Generator 1.0 BETA 2 and previous versions allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) theme_path parameter to core/themes.php and the (2) filename parameter to download.php.
Podcast Generator Podcast Generator
1 EDB exploit
NA
CVE-2008-6934
Static code injection vulnerability in Sanus|artificium (aka Sanusart) Free simple guestbook PHP script, when downloaded prior to 20081111, allows remote malicious users to inject arbitrary PHP code into messages.txt via the message parameter to act.php, which is executed when gu...
Sansuart Free Simple Guestbook Php Script
1 EDB exploit
NA
CVE-2008-6651
Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote malicious users to inject arbitrary PHP code into oxyhistory.php via the oxymsg parameter.
Oxyproject Oxybox 0.85
1 EDB exploit
NA
CVE-2007-0591
PHP remote file inclusion vulnerability in configure.php in Vu Le An Virtual Path (VirtualPath) 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Vu Le An Virtual Path 1.0
1 EDB exploit
NA
CVE-2007-0703
PHP remote file inclusion vulnerability in library/StageLoader.php in WebBuilder 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[core][module_path] parameter.
Webbuilder Webbuilder
1 EDB exploit
NA
CVE-2007-1104
PHP remote file inclusion vulnerability in top.php in PHP Module Implementation (PHP-MIP) 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the laypath parameter.
Php Mip Php Mip 0.1
1 EDB exploit
NA
CVE-2007-1372
PHP remote file inclusion vulnerability in styles/internal/header.php in the PostGuestbook 0.6.1 module for PHP-Nuke allows remote malicious users to execute arbitrary PHP code via a URL in the tpl_pgb_moddir parameter.
Postguestbook Postguestbook 0.6.1
1 EDB exploit
NA
CVE-2007-1392
Directory traversal vulnerability in down.php in netForo! 0.1g allows remote malicious users to read arbitrary files via a .. (dot dot) in the file_to_download parameter.
Netforo Netforo 0.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »