Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
articlefr vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-4170
A Privilege Escalation Vulnerability exists in Free Reprintables ArticleFR 11.06.2014 due to insufficient access restrictions in the data.php script, which could let a remote malicious user obtain access or modify or delete database information.
Freereprintables Articlefr
1 EDB exploit
2.1
CVSSv2
CVE-2015-6591
Directory traversal vulnerability in application/templates/amelia/loadjs.php in Free Reprintables ArticleFR 3.0.7 and previous versions allows local users to read arbitrary files via the s parameter.
Freereprintables Articlefr
7.5
CVSSv2
CVE-2014-5097
Multiple SQL injection vulnerabilities in Free Reprintables ArticleFR 3.0.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the id parameter in a (1) get or (2) set action to rate.php.
Freereprintables Articlefr
1 EDB exploit
7.5
CVSSv2
CVE-2015-1364
SQL injection vulnerability in the getProfile function in system/profile.functions.php in Free Reprintables ArticleFR 3.0.5 allows remote malicious users to execute arbitrary SQL commands via the username parameter to register/.
Freereprintables Articlefr 3.0.5
1 EDB exploit
6.8
CVSSv2
CVE-2015-5530
Multiple cross-site request forgery (CSRF) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote malicious users to hijack the authentication of administrators for requests that add an administrator account via a request to dashboard/users/create/.
Freereprintables Articlefr 3.0.6
1 EDB exploit
4.3
CVSSv2
CVE-2015-1363
Cross-site scripting (XSS) vulnerability in Free Reprintables ArticleFR 3.0.5 allows remote malicious users to inject arbitrary web script or HTML via the q parameter to search/v/.
Freereprintables Articlefr 3.0.5
4.3
CVSSv2
CVE-2015-5529
Multiple cross-site scripting (XSS) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) name parameter to dashboard/settings/categories/, (2) title or (3) rel parameter to dashboard/settings/links/, ...
Freereprintables Articlefr 3.0.6
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started