Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dun vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-0405
Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via directory traversal sequences in the pgvaction parameter.
Phpgedview Phpgedview 4.2.3
1 EDB exploit
NA
CVE-2008-6668
Multiple directory traversal vulnerabilities in nweb2fax 0.2.7 and previous versions allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) id parameter to comm.php and (2) var_filename parameter to viewrq.php.
Dirk Bartley Nweb2fax 0.2
Dirk Bartley Nweb2fax
1 EDB exploit
NA
CVE-2008-2351
Multiple SQL injection vulnerabilities in index.php in CMS WebManager-Pro allow remote malicious users to execute arbitrary SQL commands via the (1) lang_id and (2) menu_id parameters.
Webmanager-pro Cms Webmanager-pro
1 EDB exploit
NA
CVE-2009-2310
SQL injection vulnerability in include/get_read.php in Extensible-BioLawCom CMS (X-BLC) 0.2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the section parameter.
Bow Der Kleine X-blc
Bow Der Kleine X-blc 0.1.4
1 EDB exploit
NA
CVE-2009-2313
Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the name parameter.
Jinzora Jinzora 2.5.1
Jinzora Jinzora 0.1.1
Jinzora Jinzora 0.3.1
Jinzora Jinzora 2.0.1
Jinzora Jinzora 2.6
Jinzora Jinzora 0.9.2
Jinzora Jinzora 2.7.5
Jinzora Jinzora 2.0
Jinzora Jinzora 2.3.4
Jinzora Jinzora 2.3.3
Jinzora Jinzora 0.3
Jinzora Jinzora 0.2
Jinzora Jinzora 0.6.2
Jinzora Jinzora 0.5
Jinzora Jinzora 0.9.1
Jinzora Jinzora 0.9.4
Jinzora Jinzora 2.3.2
Jinzora Jinzora 2.3.1
Jinzora Jinzora 0.8.1
Jinzora Jinzora 0.7
Jinzora Jinzora 0.9.3
Jinzora Jinzora 1.1
1 EDB exploit
NA
CVE-2008-4739
Directory traversal vulnerability in index.php in PlugSpace 0.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the navi parameter.
Plugspace Plugspace 0.1
1 EDB exploit
NA
CVE-2008-4712
Directory traversal vulnerability in pages/showblog.php in LnBlog 0.9.0 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the plugin parameter.
Lnblog Lnblog
Lnblog Lnblog 0.8.1
Lnblog Lnblog 0.8.2
Lnblog Lnblog 0.8.0
1 EDB exploit
NA
CVE-2007-4369
Directory traversal vulnerability in go/_files in SOTEeSKLEP prior to 4.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Sote Soteesklep 3.1
Sote Soteesklep 3.5
Sote Soteesklep 2.0
Sote Soteesklep 2.5
Sote Soteesklep 3.0
1 EDB exploit
NA
CVE-2008-4318
Observer 0.3.2.1 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in the query parameter to (1) whois.php or (2) netcmd.php.
Project-observer Observer 0.2.3
Project-observer Observer 0.2.2
Project-observer Observer 0.3.1
Project-observer Observer 0.30-pre-1
Project-observer Observer 0.1.2
Project-observer Observer 0.1.1
Project-observer Observer 0.1.0
Project-observer Observer 0.2.5
Project-observer Observer 0.2.4
Project-observer Observer
Project-observer Observer 0.3.2
Project-observer Observer 0.2.1
Project-observer Observer 0.2.0
1 EDB exploit
1 Github repository
NA
CVE-2008-6223
PHP remote file inclusion vulnerability in visualizza.php in Way Of The Warrior (WOTW) 5.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the plancia parameter to crea.php.
Wotw Way Of The Warrior 5.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »