Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1929
Directory traversal vulnerability in downloadpic.php in Beryo 2.0, and possibly other versions including 2.4, allows remote malicious users to read arbitrary files via a .. (dot dot) in the chemin parameter.
Gna Beryo 2.0
Gna Beryo 2.4
1 EDB exploit
NA
CVE-2007-2067
Multiple PHP remote file inclusion vulnerabilities in Marco Antonio Islas Cruz Web Slider (WebSlider) 0.6 allow remote malicious users to execute arbitrary PHP code via a URL in the path parameter to (1) index.php, (2) modules/pdf.php, (3) plugins/highlight.php, or (4) include/mo...
Webslider Webslider 0.6
1 EDB exploit
NA
CVE-2007-2185
Multiple PHP remote file inclusion vulnerabilities in Supasite 1.23b allow remote malicious users to execute arbitrary PHP code via a URL in the supa[db_path] parameter to (1) common_functions.php, (2) admin_auth_cookies.php, (3) admin_mods.php, (4) admin_news.php, (5) admin_topi...
Supasite Supasite 1.23b
1 EDB exploit
NA
CVE-2007-2200
Directory traversal vulnerability in navigator/navigator_ok.php in Pagode 0.5.8 allows remote malicious users to read and possibly delete arbitrary files via a .. (dot dot) in the asolute parameter.
Pagode Pagode 0.5.8
1 EDB exploit
NA
CVE-2007-2271
Directory traversal vulnerability in Rajneel Lal TotaRam USP FOSS Distribution 1.01 allows remote malicious users to read arbitrary files via a .. (dot dot) in the dnld parameter.
Rajneel Lal Totaram Usp Foss Distribution 1.01
1 EDB exploit
NA
CVE-2007-2301
Multiple PHP remote file inclusion vulnerabilities in audioCMS arash 0.1.4 allow remote malicious users to execute arbitrary PHP code via a URL in the arashlib_dir parameter to (1) edit.inc.php and (2) list_features.inc.php in arash_lib/include, and (3) arash_gadmin.class.php and...
Arash Audiocms 0.1.4
1 EDB exploit
NA
CVE-2007-2426
PHP remote file inclusion vulnerability in myfunctions/mygallerybrowser.php in the myGallery 1.4b4 and previous versions plugin for WordPress allows remote malicious users to execute arbitrary PHP code via a URL in the myPath parameter.
Wildbits Mygallery
1 EDB exploit
NA
CVE-2007-3057
PHP remote file inclusion vulnerability in include/wysiwyg/spaw_control.class.php in the icontent 4.5 module for XOOPS allows remote malicious users to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a duplicate of CVE-2006-4656.
Xoops Icontent Module 4.5
1 EDB exploit
NA
CVE-2007-2934
Directory traversal vulnerability in skins/common.css.php in Vistered Little 1.6a allows remote malicious users to read arbitrary files via a .. (dot dot) in the skin parameter.
Windy Road Vistered Little 1.6a
1 EDB exploit
NA
CVE-2008-2215
Multiple directory traversal vulnerabilities in Project-Based Calendaring System (PBCS) 0.7.1-1 allow remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter to (1) src/yopy_sync.php and (2) system-logger/print_logs.php.
Pbcs Project-based Calendaring System 0.7.1-1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »