Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0813
Directory traversal vulnerability in Download.php in XPWeb 3.0.1, 3.3.2, and possibly other versions, allows remote malicious users to read arbitrary files via a .. (dot dot) in the url parameter.
Xpweb Xpweb 3.0.1
Xpweb Xpweb 3.3.2
1 EDB exploit
NA
CVE-2008-0814
Directory traversal vulnerability in download.php in Tracking Requirements & Use Cases (TRUC) 0.11.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the upload_filename parameter.
Truc Truc 0.11
1 EDB exploit
NA
CVE-2008-0794
Directory traversal vulnerability in user/header.php in Affiliate Market 0.1 BETA allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Affiliate Market Affiliate Market 0.1 Beta
1 EDB exploit
NA
CVE-2008-0690
SQL injection vulnerability in index.php in the mosDirectory (com_directory) 2.3.2 component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a viewcat action.
Joomla Com Directory 2.3.2
1 EDB exploit
NA
CVE-2008-0503
Eval injection vulnerability in admin/op/disp.php in Netwerk Smart Publisher 1.0.1 allows remote malicious users to execute arbitrary PHP code via the filedata parameter.
Netwerk Smart Publisher 1.0.1
1 EDB exploit
NA
CVE-2007-6653
Directory traversal vulnerability in download.php in Mihalism Multi Host 2.0.7 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Mihalism Multi Host 2.07
1 EDB exploit
NA
CVE-2007-6657
PHP remote file inclusion vulnerability in source/includes/load_forum.php in Mihalism Multi Forum Host 3.0.x and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the mfh_root_path parameter.
Mihalism Multi Host
1 EDB exploit
NA
CVE-2008-0091
Directory traversal vulnerability in download2.php in AGENCY4NET WEBFTP 1 allows remote malicious users to read and delete arbitrary files via a .. (dot dot) in the file parameter.
Agency4net Webftp 1
1 EDB exploit
NA
CVE-2007-6553
Multiple PHP remote file inclusion vulnerabilities in TeamCal Pro 3.1.000 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the CONF[app_root] parameter to (1) tcuser.class.php, (2) absencecount.inc.php, (3) avatar.inc.php, (4) csvhandl...
George Lewe Teamcal Pro
1 EDB exploit
NA
CVE-2007-6554
Multiple directory traversal vulnerabilities in TeamCal Pro 3.1.000 and previous versions allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter to (1) index.php, (2) register.php, (3) login.php, or (4) statistics.php.
George Lewe Teamcal Pro
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »