Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cr4wl3r vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2009-4435
Multiple directory traversal vulnerabilities in F3Site 2009 allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the GLOBALS[nlang] parameter to (1) mod/poll.php and (2) mod/new.php.
Compmaster.prv.pl F3site 2009
NA
CVE-2010-1935
Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE...
Openmairie Openpresse 1.01
NA
CVE-2010-1947
Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter. NOTE: this may be...
Openmairie Openregistrecil 1.02
NA
CVE-2010-2134
Multiple SQL injection vulnerabilities in login.php in Project Man 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password parameter.
Http-solution Project Man 1.0
NA
CVE-2010-2135
Multiple SQL injection vulnerabilities in login.php in HazelPress Lite 0.0.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) password fields.
Hazelpress Hazelpress 0.0.4
NA
CVE-2010-2137
PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Giaard PromanGiaard Proman 0.1.0
NA
CVE-2009-4779
Multiple PHP remote file inclusion vulnerabilities in NukeHall 0.3 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the spaw_root parameter to (1) blocks.php, (2) messages.php, and (3) stories.php in admin/modules/.
Robert Garrigos NukehallRobert Garrigos Nukehall 0.2.1Robert Garrigos Nukehall 0.3Robert Garrigos Nukehall 0.2
NA
CVE-2009-3312
PHP remote file inclusion vulnerability in php/init.poll.php in phpPollScript 1.3 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a crafted URL in the include_class parameter.
Tomex Phppollscript
NA
CVE-2009-3324
PHP remote file inclusion vulnerability in include/prodler.class.php in ProdLer 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the sPath parameter.
Andres G Aragoneses ProdlerAndres G Aragoneses Prodler 1.1
NA
CVE-2009-3492
Multiple PHP remote file inclusion vulnerabilities in Loggix Project 9.4.5 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the pathToIndex parameter to (1) Calendar.php, (2) Comment.php, (3) Rss.php and (4) Trackback.php in lib/Loggix...
Gotdns Loggix ProjectGotdns Loggix Project 9.3.27Gotdns Loggix Project 9.3.28
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook