Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apphp vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2015-4713
SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote editors to execute arbitrary SQL commands via the pid parameter to index.php.
Apphp Hotel Site 3.4.4
Apphp Hotel Site 3.5.1
Apphp Hotel Site 3.0.9
Apphp Hotel Site 3.1.3
Apphp Hotel Site 3.8.4
Apphp Hotel Site 3.9.1
Apphp Hotel Site 3.2.4
Apphp Hotel Site 3.3.0
Apphp Hotel Site 3.6.1
Apphp Hotel Site 3.7.5
605
VMScore
CVE-2010-4881
Multiple cross-site request forgery (CSRF) vulnerabilities in calendar.class.php in ApPHP Calendar (ApPHP CAL) allow remote malicious users to hijack the authentication of unspecified victims for requests that use the (1) category_name, (2) category_description, (3) event_name, o...
Apphp Apphp Calendar
383
VMScore
CVE-2010-4880
Multiple cross-site scripting (XSS) vulnerabilities in calendar.class.php in ApPHP Calendar (ApPHP CAL) allow remote malicious users to inject arbitrary web script or HTML via the (1) category_name, (2) category_description, (3) event_name, or (4) event_description parameter.
Apphp Apphp Calendar
685
VMScore
CVE-2010-3480
Directory traversal vulnerability in index.php in ApPHP PHP MicroCMS 1.0.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Apphp Php Microcms 1.0.1
1 EDB exploit
685
VMScore
CVE-2010-3481
Multiple SQL injection vulnerabilities in login.php in ApPHP PHP MicroCMS 1.0.1, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) user_name and (2) password variables, possibly related to include/classes/Login.php. NOTE...
Apphp Php Microcms 1.0.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started