Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bd0rk vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5390
PHP remote file inclusion vulnerability in includes/functions_mod_user.php in the ACP User Registration (MMW) 1.00 module for phpBB allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Acp User Registration Module 1.00
1 EDB exploit
NA
CVE-2002-1656
X-News (x_news) 1.1 and previous versions allows malicious users to authenticate as other users by obtaining the MD5 checksum of the password, e.g. via sniffing or the users.txt data file, and providing it in a cookie.
Xqus X-news 1.1
Xqus X-news 1.0
1 EDB exploit
NA
CVE-2007-1818
PHP remote file inclusion vulnerability in MOD_forum_fields_parse.php in the Forum picture and META tags 1.7 module for phpBB allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Forum Picture And Meta Tags Forum Picture And Meta Tags 1.7
1 EDB exploit
NA
CVE-2007-1934
Directory traversal vulnerability in member.php in the eBoard 1.0.7 module for PHP-Nuke allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the GLOBALS[name] parameter.
Php-nuke Eboard Module 1.0.7
1 EDB exploit
NA
CVE-2007-1961
PHP remote file inclusion vulnerability in mutant_functions.php in the Mutant 0.9.2 portal for phpBB 2.2 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Mutant 0.9.2
1 EDB exploit
NA
CVE-2010-2146
PHP remote file inclusion vulnerability in banned.php in Visitor Logger allows remote malicious users to execute arbitrary PHP code via a URL in the VL_include_path parameter.
Graviton-mediatech Visitor Logger
1 EDB exploit
NA
CVE-2006-6295
PHP remote file inclusion vulnerability in includes/mx_common.php in the mx_tinies 1.3.0 Module for MxBB Portal 1.06 allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Mx Tinies 1.3.0
1 EDB exploit
NA
CVE-2011-4572
Cross-site scripting (XSS) vulnerability in inc/tesmodrewite.php in CF Image Hosting Script 1.3.82, 1.4.1, and probably other versions prior to 1.4.2 allows remote malicious users to inject arbitrary web script or HTML via the q parameter. NOTE: this was originally reported as a ...
Codefuture Cf Image Hosting Script 1.4.1
Codefuture Cf Image Hosting Script 1.3.82
1 EDB exploit
NA
CVE-2006-6545
PHP remote file inclusion vulnerability in includes/common.php in the ErrorDocs 1.0.0 and previous versions module for mxBB (mx_errordocs) allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Php Errordocs 1.0.0
1 EDB exploit
NA
CVE-2006-6566
PHP remote file inclusion vulnerability in includes/profilcp_constants.php in the Profile Control Panel (CPanel) module for mxBB 0.91c allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Mxbb 0.91c
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »