Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shikaa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5068
PHP remote file inclusion vulnerability in admin/index.php in Brudaswen (1) BrudaNews 1.1 and previous versions and (2) BrudaGB 1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the o parameter.
Brudaswen Brudanews
2 EDB exploits
NA
CVE-2006-3685
PHP remote file inclusion vulnerability in CzarNews 1.12 up to and including 1.14 allows remote malicious users to execute arbitrary PHP code via a URL in the tpath parameter to cn_config.php. NOTE: the news.php vector is already covered by CVE-2005-0859.
Czaries Network Czarnews 1.12
Czaries Network Czarnews 1.13
Czaries Network Czarnews 1.14
1 EDB exploit
NA
CVE-2006-4045
PHP remote file inclusion vulnerability in news.php in Torbstoff News 4 allows remote malicious users to execute arbitrary PHP code via a URL in the pfad parameter.
Torbstoff Torbstoff News 4
1 EDB exploit
NA
CVE-2006-4277
Multiple PHP remote file inclusion vulnerabilities in Tutti Nova 1.6 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the TNLIB_DIR parameter to (1) include/novalib/class.novaAdmin.mysql.php and (2) novalib/class.novaRead.mysql.php. NO...
Tutti Nova Tutti Nova
1 EDB exploit
NA
CVE-2006-4440
PHP remote file inclusion vulnerability in main.php in Ay System Solutions CMS 2.6 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter.
Ay System Solutions Ay System Solutions Cms
1 EDB exploit
NA
CVE-2006-4441
Multiple PHP remote file inclusion vulnerabilities in Ay System Solutions CMS 2.6 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter to (1) home.php or (2) impressum.php. NOTE: the provenance of this...
Ay System Solutions Ay System Solutions Cms
1 EDB exploit
NA
CVE-2006-4898
PHP remote file inclusion vulnerability in include/phpxd/phpXD.php in guanxiCRM 0.9.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the appconf[rootpath] parameter.
Guanxicrm Guanxicrm Business Solution 0.9.1
1 EDB exploit
NA
CVE-2006-5070
PHP remote file inclusion vulnerability in fsl2/objects/fs_form_links.php in faceStones Personal 2.0.42 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[fsinit][objpath] parameter.
Facestones Facestones
1 EDB exploit
NA
CVE-2006-5383
SQL injection vulnerability in comadd.php in Def-Blog 1.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the article parameter.
Def-blog Def-blog 1.0.1
1 EDB exploit
NA
CVE-2006-4630
PHP remote file inclusion vulnerability in jscript.php in Sky GUNNING MySpeach 3.0.2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the my_ms[root] parameter.
Sky Gunning Myspeach
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »