Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
allmyguests vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-0172
Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.3.0 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the AMG_serverpath parameter to (1) comments.php and (2) signin.php; and possibly via a URL in unspecified paramet...
Allmyguests Project Allmyguests
1 EDB exploit
755
VMScore
CVE-2006-4993
Multiple PHP remote file inclusion vulnerabilities in AllMyGuests 0.4.1 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the _AMGconfig[cfg_serverpath] parameter in (1) modules/AllMyGuests/signin.php (aka the Nuke module) and (2) AllMy...
Allmyguests Project Allmyguests
1 EDB exploit
765
VMScore
CVE-2004-0285
PHP remote file inclusion vulnerabilities in include/footer.inc.php in (1) AllMyVisitors, (2) AllMyLinks, and (3) AllMyGuests allow remote malicious users to execute arbitrary PHP code via a URL in the _AMVconfig[cfg_serverpath] parameter.
Allmyguests Project Allmyguests 0.4.1
Allmyguests Project Allmyguests 0.4
Allmyguests Project Allmyguests 0.3
Allmyguests Project Allmyguests 0.1.2
Allmylinks Project Allmylinks 0.3
Allmylinks Project Allmylinks 0.4
Allmylinks Project Allmylinks 0.4.1
Allmylinks Project Allmylinks 0.4.3
Allmylinks Project Allmylinks 0.4.4
Allmylinks Project Allmylinks 0.4.9
Allmylinks Project Allmylinks 0.5
Allmyvisitors Project Allmyvisitors 0.4
Allmyvisitors Project Allmyvisitors 0.3
3 EDB exploits
383
VMScore
CVE-2014-8293
Cross-site scripting (XSS) vulnerability in Voice Of Web AllMyGuests 0.4.1 allows remote malicious users to inject arbitrary web script or HTML via the AMG_signin_topic parameter to index.php.
Php Resource Voice Of Web Allmyguests 0.4.1
668
VMScore
CVE-2014-8294
Multiple SQL injection vulnerabilities in Voice Of Web AllMyGuests 0.4.1 allow remote malicious users to execute arbitrary SQL commands via the (1) allmyphp_cookie cookie to admin.php or the (2) Username or (3) Password.
Php Resource Voice Of Web Allmyguests 0.4.1
755
VMScore
CVE-2008-1961
SQL injection vulnerability in index.php in Voice Of Web AllMyGuests 0.4.1 allows remote malicious users to execute arbitrary SQL commands via the AMG_id parameter in a comments action.
Php Resource Voice Of Web Allmyguests 0.4.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started