Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ahmadbady vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2008-6492
Unrestricted file upload vulnerability in process.php in Tizag Countdown Creator 3 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension via index.php, then accessing the uploaded file via a direct request to the file in pics/. N...
Tizag Tizag Countdown Creator 3
1 EDB exploit
435
VMScore
CVE-2008-5770
Cross-site scripting (XSS) vulnerability in config/make_config.php in PHP Weather 2.2.2 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Phpweather Phpweather 2.2.2
1 EDB exploit
1 Github repository
755
VMScore
CVE-2008-5771
Directory traversal vulnerability in test.php in PHP Weather 2.2.2 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the language parameter.
Phpweather Phpweather 2.2.2
1 EDB exploit
755
VMScore
CVE-2008-5881
Multiple directory traversal vulnerabilities in playSMS 0.9.3 allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the (1) gateway_module parameter to plugin/gateway/gnokii/init.php and the (2) themes_module parameter to p...
Playsms Playsms 0.9.3
1 EDB exploit
515
VMScore
CVE-2009-0595
PHP remote file inclusion vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the theme parameter.
Phpskelsite Phpskelsite 1.4
1 EDB exploit
755
VMScore
CVE-2009-1771
index.php in Flyspeck CMS 6.8 does not require administrative authentication for the updateExistingContent action, which allows remote malicious users to create or modify admin accounts via the (1) users[fullname], (2) users[email], (3) users[role_id], (4) users[username], and (5...
Flyspeck Flyspeck Cms 6.8
1 EDB exploit
755
VMScore
CVE-2009-2112
Directory traversal vulnerability in include/page_bottom.php in phpFK 7.03 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the _FORUM[settings_design_style] parameter.
Frank-karau Phpfk 7.03
1 EDB exploit
755
VMScore
CVE-2008-6920
Unrestricted file upload vulnerability in auth.php in phpEmployment 1.8 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension during a regnew action, then accessing it via a direct request to the file in photoes/.
W2b Phpemployment 1.8
1 EDB exploit
435
VMScore
CVE-2008-3566
Cross-site scripting (XSS) vulnerability in ZoneO-soft freeForum 1.7 allows remote malicious users to inject arbitrary web script or HTML via the acuparam parameter to (1) the default URI or (2) index.php, or (3) the PATH_INFO to index.php. NOTE: the provenance of this informatio...
Zoneo-soft Freeforum 1.7
1 EDB exploit
755
VMScore
CVE-2009-0495
PHP remote file inclusion vulnerability in include/define.php in REALTOR 747 4.11 allows remote malicious users to execute arbitrary PHP code via a URL in the INC_DIR parameter.
It747 Realtor 747 4.11
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »