Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s.w.a.t. vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5573
PHP remote file inclusion vulnerability in classes/core/language.php in LimeSurvey 1.5.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the rootdir parameter.
Limesurvey Limesurvey
1 EDB exploit
NA
CVE-2007-5800
Multiple PHP remote file inclusion vulnerabilities in the BackUpWordPress 0.4.2b and previous versions plugin for WordPress allow remote malicious users to execute arbitrary PHP code via a URL in the bkpwp_plugin_path parameter to (1) plugins/BackUp/Archive.php; and (2) Predicate...
Tom Willmot Backupwordpress Plugin
1 EDB exploit
NA
CVE-2008-3749
SQL injection vulnerability in tr.php in YourFreeWorld Banner Management Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Banner Management Script
1 EDB exploit
NA
CVE-2007-5315
PHP remote file inclusion vulnerability in common.php in LiveAlbum 0.9.0, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the livealbum_dir parameter.
Softpedia Livealbum 0.9.0
1 EDB exploit
NA
CVE-2007-5387
PHP remote file inclusion vulnerability in active/components/xmlrpc/client.php in Pindorama 0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the c[components] parameter.
Pindorama Pindorama 0.1
1 EDB exploit
NA
CVE-2007-5388
Multiple PHP remote file inclusion vulnerabilities in WebDesktop 0.1 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) app parameter to apps/apps.php and the (2) wsk parameter to wsk/wsk.php.
Webdesktop Webdesktop 0.1
1 EDB exploit
NA
CVE-2007-6394
SQL injection vulnerability in index.php in Content Injector 1.53 allows remote malicious users to execute arbitrary SQL commands via the id parameter in an expand action.
P3mbo Content Injector 1.53
1 EDB exploit
NA
CVE-2008-4709
SQL injection vulnerability in news_read.php in Pilot Group (PG) eTraining allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Pilot Group Etraining
1 EDB exploit
NA
CVE-2008-3317
admin/index.php in Maian Search 1.1 and previous versions allows remote malicious users to bypass authentication and gain administrative access by sending an arbitrary search_cookie cookie.
Maian Script World Maian Search 1.0
Maian Script World Maian Search
1 EDB exploit
NA
CVE-2008-3318
admin/index.php in Maian Weblog 4.0 and previous versions allows remote malicious users to bypass authentication and gain administrative access by sending an arbitrary weblog_cookie cookie.
Maian Weblog
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »