Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dun vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6036
PHP remote file inclusion vulnerability in main.inc.php in BaseBuilder 2.0.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the mj_config[src_path] parameter.
Basebuilder Basebuilder 2.0
Basebuilder Basebuilder
Basebuilder Basebuilder 1.0.3
Basebuilder Basebuilder 1.0
1 EDB exploit
NA
CVE-2008-1751
Multiple directory traversal vulnerabilities in index.php in Ksemail allow remote malicious users to read arbitrary local files via a .. (dot dot) in the (1) language and (2) lang parameters.
Ksemail Ksemail
1 EDB exploit
NA
CVE-2007-4369
Directory traversal vulnerability in go/_files in SOTEeSKLEP prior to 4.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Sote Soteesklep 3.1
Sote Soteesklep 3.5
Sote Soteesklep 2.0
Sote Soteesklep 2.5
Sote Soteesklep 3.0
1 EDB exploit
NA
CVE-2008-5071
Multiple eval injection vulnerabilities in itpm_estimate.php in Yoxel 1.23beta and previous versions allow remote authenticated users to execute arbitrary PHP code via the proj_id parameter.
Yoxel Yoxel 1.21
Yoxel Yoxel 1.20
Yoxel Yoxel 1.18beta
Yoxel Yoxel 1.17beta
Yoxel Yoxel 1.09beta
Yoxel Yoxel 1.08beta
Yoxel Yoxel 1.07beta
Yoxel Yoxel 1.22
Yoxel Yoxel 1.21beta
Yoxel Yoxel 1.19beta
Yoxel Yoxel 1.11beta
Yoxel Yoxel 1.10beta
Yoxel Yoxel 1.20beta
Yoxel Yoxel 1.13beta
Yoxel Yoxel 1.16beta
Yoxel Yoxel 1.15beta
Yoxel Yoxel 1.06beta
Yoxel Yoxel
Yoxel Yoxel 1.22beta
Yoxel Yoxel 1.14beta
Yoxel Yoxel 1.12beta
1 EDB exploit
NA
CVE-2008-5587
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and previous versions, when register_globals is enabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.
Phppgadmin Phppgadmin 3.5.2
Phppgadmin Phppgadmin 3.5
Phppgadmin Phppgadmin 3.4.1
Phppgadmin Phppgadmin 3.1
Phppgadmin Phppgadmin
Phppgadmin Phppgadmin 2.2.1
Phppgadmin Phppgadmin 2.2
Phppgadmin Phppgadmin 4.1.1
Phppgadmin Phppgadmin 3.5.3
1 EDB exploit
NA
CVE-2008-6265
Directory traversal vulnerability in portfolio/css.php in Cyberfolio 7.12.2 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Cyberfolio Cyberfolio 2.2
Cyberfolio Cyberfolio 2.1
Cyberfolio Cyberfolio 7.10
Cyberfolio Cyberfolio 2.0
Cyberfolio Cyberfolio 6.0
Cyberfolio Cyberfolio 1.0
Cyberfolio Cyberfolio
Cyberfolio Cyberfolio 7.12
Cyberfolio Cyberfolio 1.2
1 EDB exploit
NA
CVE-2008-6402
PHP remote file inclusion vulnerability in hu/modules/reg-new/modstart.php in Sofi WebGui 0.6.3 PRE and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the mod_dir parameter.
Muskatli Sofi Webgui 0.4.2
Muskatli Sofi Webgui
Muskatli Sofi Webgui 0.6.0pre
Muskatli Sofi Webgui 0.5.2
1 EDB exploit
NA
CVE-2008-6403
PHP remote file inclusion vulnerability in themes/default/include/html/insert.inc.php in OpenRat 0.8-beta4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the tpl_dir parameter.
Openrat Openrat
Openrat Openrat 0.8-beta1
1 EDB exploit
NA
CVE-2008-4712
Directory traversal vulnerability in pages/showblog.php in LnBlog 0.9.0 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the plugin parameter.
Lnblog Lnblog
Lnblog Lnblog 0.8.1
Lnblog Lnblog 0.8.2
Lnblog Lnblog 0.8.0
1 EDB exploit
NA
CVE-2008-4739
Directory traversal vulnerability in index.php in PlugSpace 0.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the navi parameter.
Plugspace Plugspace 0.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »