Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cr4wl3r vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-4998
PHP remote file inclusion vulnerability in ardeaCore/lib/core/ardeaInit.php in ardeaCore PHP Framework 2.2 allows remote malicious users to execute arbitrary PHP code via a URL in the pathForArdeaCore parameter. NOTE: some of these details are obtained from third party informatio...
Maulana Al Matien Ardeacore Php Framework 2.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-2135
Multiple SQL injection vulnerabilities in login.php in HazelPress Lite 0.0.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) password fields.
Hazelpress Hazelpress 0.0.4
1 EDB exploit
7.5
CVSSv2
CVE-2010-2137
PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Giaard Proman
Giaard Proman 0.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-2134
Multiple SQL injection vulnerabilities in login.php in Project Man 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password parameter.
Http-solution Project Man 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2010-1743
SQL injection vulnerability in projects.php in Scratcher allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Satyadeep Scratcher
1 EDB exploit
7.5
CVSSv2
CVE-2010-1538
SQL injection vulnerability in print_raincheck.php in phpRAINCHECK 1.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Bluestrikeweb Phpraincheck
1 EDB exploit
7.5
CVSSv2
CVE-2010-1537
Multiple directory traversal vulnerabilities in phpCDB 1.0 and previous versions allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang_global parameter to (1) firstvisit.php, (2) newfolder.php, (3) showfolders.php, (4) newlang.ph...
Francois Bissonnette Phpcdb
1 EDB exploit
7.5
CVSSv2
CVE-2009-4779
Multiple PHP remote file inclusion vulnerabilities in NukeHall 0.3 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the spaw_root parameter to (1) blocks.php, (2) messages.php, and (3) stories.php in admin/modules/.
Robert Garrigos Nukehall
Robert Garrigos Nukehall 0.2.1
Robert Garrigos Nukehall 0.3
Robert Garrigos Nukehall 0.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-1467
Multiple PHP remote file inclusion vulnerabilities in openUrgence Vaccin 1.03 allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) collectivite.class.php, (2) injection.class.php, (3) utilisateur.class.php, (4) droit.class.php, (5) ...
Francois Raynaud Openurgence Vaccin 1.03
1 EDB exploit
7.5
CVSSv2
CVE-2010-1366
Multiple SQL injection vulnerabilities in admin/admin_login.php in Uiga Fan Club 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) admin_name and (2) admin_password parameters.
Uiga Fan Club 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »