Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
egix vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-4451
libs/Wakka.class.php in WikkaWiki 1.3.1 and 1.3.2, when the spam_logging option is enabled, allows remote malicious users to write arbitrary PHP code to the spamlog_path file via the User-Agent HTTP header in an addcomment request. NOTE: the vendor disputes this issue because the...
Wikkawiki Wikkawiki 1.3.2
Wikkawiki Wikkawiki 1.3.1
1 EDB exploit
NA
CVE-2011-4450
Directory traversal vulnerability in handlers/files.xml/files.xml.php in WikkaWiki 1.3.1 and 1.3.2 allows remote malicious users to read or delete arbitrary files via a non-initial .. (dot dot) in the file parameter, as demonstrated by the /../../wikka.config.php pathname in a do...
Wikkawiki Wikkawiki 1.3.1
Wikkawiki Wikkawiki 1.3.2
1 EDB exploit
7.2
CVSSv3
CVE-2011-4558
Tiki 8.2 and previous versions allows remote administrators to execute arbitrary PHP code via crafted input to the regexres and regex parameters.
Tiki Tiki
1 EDB exploit
NA
CVE-2011-4448
SQL injection vulnerability in actions/usersettings/usersettings.php in WikkaWiki 1.3.1 and 1.3.2 allows remote malicious users to execute arbitrary SQL commands via the default_comment_display parameter in an update action.
Wikkawiki Wikkawiki 1.3.1
Wikkawiki Wikkawiki 1.3.2
1 EDB exploit
NA
CVE-2011-4452
Cross-site request forgery (CSRF) vulnerability in the AdminUsers component in WikkaWiki 1.3.1 and 1.3.2 allows remote malicious users to hijack the authentication of administrators for requests that remove arbitrary user accounts via a delete operation, as demonstrated by an {{i...
Wikkawiki Wikkawiki 1.3.2
Wikkawiki Wikkawiki 1.3.1
1 EDB exploit
NA
CVE-2012-1002
SQL injection vulnerability in author/edit.php in OpenConf 4.x prior to 4.12 allows remote malicious users to execute arbitrary SQL commands via the pid parameter.
Zakongroup Openconf 4.11
Zakongroup Openconf 4.02
Zakongroup Openconf 4.10
Zakongroup Openconf 4.00
Zakongroup Openconf 4.01
1 EDB exploit
NA
CVE-2013-3242
plugins/system/remember/remember.php in Joomla! 2.5.x prior to 2.5.10 and 3.0.x prior to 3.0.4 does not properly handle an object obtained by unserializing a cookie, which allows remote authenticated users to conduct PHP object injection attacks and cause a denial of service via ...
Joomla Joomla\\! 3.0.2
Joomla Joomla\\! 3.0.0
Joomla Joomla\\! 3.0.1
Joomla Joomla\\! 3.0.3
Joomla Joomla\\! 2.5.6
Joomla Joomla\\! 2.5.8
Joomla Joomla\\! 2.5.1
Joomla Joomla\\! 2.5.2
Joomla Joomla\\! 2.5.3
Joomla Joomla\\! 2.5.4
Joomla Joomla\\! 2.5.9
Joomla Joomla\\! 2.5.0
Joomla Joomla\\! 2.5.5
Joomla Joomla\\! 2.5.7
1 EDB exploit
NA
CVE-2012-1300
phpFox versions 3.0.1 and below remote command execution exploit that leverages ajax.php.
1 EDB exploit
8.8
CVSSv3
CVE-2012-1496
Local file inclusion in WebCalendar prior to 1.2.5.
Webcalendar Project Webcalendar
1 EDB exploit
NA
CVE-2013-1453
plugins/system/highlight/highlight.php in Joomla! 3.0.x up to and including 3.0.2 and 2.5.x up to and including 2.5.8 allows malicious users to unserialize arbitrary PHP objects to obtain sensitive information, delete arbitrary directories, conduct SQL injection attacks, and poss...
Joomla Joomla\\! 3.0.1
Joomla Joomla\\! 3.0.2
Joomla Joomla\\! 2.5.6
Joomla Joomla\\! 2.5.7
Joomla Joomla\\! 2.5.0
Joomla Joomla\\! 2.5.1
Joomla Joomla\\! 2.5.8
Joomla Joomla\\! 3.0.0
Joomla Joomla\\! 2.5.4
Joomla Joomla\\! 2.5.5
Joomla Joomla\\! 2.5.2
Joomla Joomla\\! 2.5.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »