Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
houssamix vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-10037
Directory traversal vulnerability in DomPHP 0.83 and previous versions allows remote malicious users to have unspecified impact via a .. (dot dot) in the url parameter to photoalbum/index.php.
Domphp Domphp
1 EDB exploit
NA
CVE-2008-0566
PHP remote file inclusion vulnerability in includes/smarty.php in DeltaScripts PHP Links 1.3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the full_path_to_public_program parameter.
Deltascripts Php Links 1.3
1 EDB exploit
NA
CVE-2008-0148
TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote malicious users to execute arbitrary shell commands via the cmd parameter in a direct request.
Tutos Tutos 1.3
1 EDB exploit
NA
CVE-2008-1849
Directory traversal vulnerability in index.php in the joomlaXplorer (com_joomlaxplorer) Mambo/Joomla! component 1.6.2 and previous versions allows remote malicious users to list arbitrary directories via a .. (dot dot) in the dir parameter in a show_error action.
Joomlacode Joomlaexplorer
1 EDB exploit
NA
CVE-2008-0259
Multiple directory traversal vulnerabilities in _mg/php/mg_thumbs.php in minimal Gallery 0.8 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) thumbcat and (2) thumb parameters.
Minimal Design Minimal Gallery 0.8
1 EDB exploit
NA
CVE-2008-0283
PHP remote file inclusion vulnerability in /aides/index.php in DomPHP 0.81 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Domphp Domphp
1 EDB exploit
NA
CVE-2008-0425
Absolute path traversal vulnerability in explorerdir.php in Frimousse 0.0.2 allows remote malicious users to read arbitrary files and list arbitrary directories via a full pathname in the name parameter.
Frimousse Frimousse 0.0.2
1 EDB exploit
NA
CVE-2008-0490
SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Wordpress Wp Cal Plugin 0.3
1 EDB exploit
NA
CVE-2008-0491
SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote malicious users to execute arbitrary SQL commands via the album parameter.
Fgallery Project Fgallery 2.4.1
1 EDB exploit
NA
CVE-2008-1308
SQL injection vulnerability in the Sudirman Angriawan NukeC30 3.0 module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the id_catg parameter in a ViewCatg action to modules.php.
Sudirman Angriawan Nukec30 3.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »