Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4944
PHP remote file inclusion vulnerability in includes/pear/Net/DNS/RR.php in ProgSys 0.151 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpdns_basedir parameter.
Boesch It-consulting Progsys
1 EDB exploit
NA
CVE-2006-1209
PHP Advanced Transfer Manager 1.00 up to and including 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote malicious users to download each password hash via a direct request for a users/[USERNAME]...
Bugada Andrea Php Advanced Transfer Manager 1.00
Bugada Andrea Php Advanced Transfer Manager 1.22
Bugada Andrea Php Advanced Transfer Manager 1.21
Bugada Andrea Php Advanced Transfer Manager 1.03
Bugada Andrea Php Advanced Transfer Manager 1.20
Bugada Andrea Php Advanced Transfer Manager 1.02
Bugada Andrea Php Advanced Transfer Manager 1.01
Bugada Andrea Php Advanced Transfer Manager 1.30
1 EDB exploit
NA
CVE-2007-1708
PHP remote file inclusion vulnerability in lib/db/ez_sql.php in ttCMS 4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the lib_path parameter.
Ttcms Ttforum 1
Ttcms Ttforum 4
Ttcms Ttforum 2
Ttcms Ttforum 3
1 EDB exploit
NA
CVE-2006-4770
PHP remote file inclusion vulnerability in menu.php in MiniPort@l 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the skiny parameter.
Miniportal Miniportal
1 EDB exploit
NA
CVE-2006-5554
Directory traversal vulnerability in index.php in Imageview 5 allows remote malicious users to read or execute arbitrary local files via a .. (dot dot) in the user_settings cookie, as demonstrated by using the MyFile parameter in albumview.php to upload a text/plain .gif file con...
Blackdot Imageview
1 EDB exploit
NA
CVE-2006-4329
Multiple PHP remote file inclusion vulnerabilities in Shadows Rising RPG (Pre-Alpha) 0.0.5b and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the CONFIG[gameroot] parameter to (1) core/includes/security.inc.php, (2) core/includes/smarty...
Shadows Rising Rpg Shadows Rising Rpg
1 EDB exploit
NA
CVE-2007-0764
Unrestricted file upload vulnerability in F3Site 2.1 and previous versions allows remote authenticated administrators to upload and execute arbitrary PHP scripts via GIF86 header in a file in the uplf parameter, which can be later accessed via a relative pathname in the dir param...
F3site F3site 2.1
1 EDB exploit
NA
CVE-2009-1649
Directory traversal vulnerability in arch.php in beLive 0.2.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the arch parameter.
Bicluc Belive 0.2.3
1 EDB exploit
NA
CVE-2009-2122
SQL injection vulnerability in viewimg.php in the Paolo Palmonari Photoracer plugin 1.0 for WordPress allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Paolo Palmonari Photoracer Plugin For Wordpress 1.0
1 EDB exploit
NA
CVE-2007-2320
SQL injection vulnerability in kontakt.php in Papoo 3.02 and previous versions allows remote malicious users to execute arbitrary SQL commands via the menuid parameter, a different vector than CVE-2005-4478.
Papoo Papoo
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »