Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
egix vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-7815
Directory traversal vulnerability in core/ViewDataTable/Factory.php in Piwik prior to 2.15.0 allows remote malicious users to include and execute arbitrary local files via the viewDataTable parameter.
Matomo Matomo
NA
CVE-2008-3486
Directory traversal vulnerability in the user_get_profile function in include/functions.inc.php in Coppermine Photo Gallery (CPG) 1.4.18 and previous versions, when the charset is utf-8, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot)...
Coppermine-gallery Coppermine Photo Gallery 1.2.0
Coppermine-gallery Coppermine Photo Gallery 1.4.10
Coppermine-gallery Coppermine Photo Gallery 1.4.11
Coppermine-gallery Coppermine Photo Gallery 1.4.2
Coppermine-gallery Coppermine Photo Gallery 1.4.3
Coppermine-gallery Coppermine Photo Gallery 1.4.4
Coppermine-gallery Coppermine Photo Gallery
Coppermine-gallery Coppermine Photo Gallery 1.0
Coppermine-gallery Coppermine Photo Gallery 1.1
Coppermine-gallery Coppermine Photo Gallery 1.2.1
Coppermine-gallery Coppermine Photo Gallery 1.3.0
Coppermine-gallery Coppermine Photo Gallery 1.4.14
Coppermine-gallery Coppermine Photo Gallery 1.4.15
Coppermine-gallery Coppermine Photo Gallery 1.4.7
Coppermine-gallery Coppermine Photo Gallery 1.4.8
Coppermine-gallery Coppermine Photo Gallery 1.4.12
Coppermine-gallery Coppermine Photo Gallery 1.4.13
Coppermine-gallery Coppermine Photo Gallery 1.4.5
Coppermine-gallery Coppermine Photo Gallery 1.4.6
Coppermine-gallery Coppermine Photo Gallery 1.1.0
Coppermine-gallery Coppermine Photo Gallery 1.4.0
Coppermine-gallery Coppermine Photo Gallery 1.4.1
1 EDB exploit
NA
CVE-2011-5075
translate.php in Support Incident Tracker (aka SiT!) 3.45 up to and including 3.65 allows remote malicious users to obtain sensitive information via a direct request using the save action, which reveals the installation path.
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker 3.64
Sitracker Support Incident Tracker 3.65
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.60
1 EDB exploit
NA
CVE-2008-2194
SQL injection vulnerability in forums.php in DeluxeBB 1.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the sort parameter.
Deluxebb Deluxebb
1 EDB exploit
NA
CVE-2008-2195
Static code injection vulnerability in admincp.php in DeluxeBB 1.2 and previous versions allows remote authenticated administrators to inject arbitrary PHP code into logs/cp.php via the URI.
Deluxebb Deluxebb
1 EDB exploit
NA
CVE-2008-2686
webinc/bxe/scripts/loadsave.php in Flux CMS 1.5.0 and previous versions allows remote malicious users to execute arbitrary code by overwriting a PHP file in webinc/bxe/scripts/ via a filename in the XML parameter and PHP sequences in the request body, then making a direct request...
Flux Cms Flux Cms 1.3
Flux Cms Flux Cms 1.31
Flux Cms Flux Cms 1.4
Flux Cms Flux Cms
Flux Cms Flux Cms 1.2
1 EDB exploit
NA
CVE-2008-2742
Unrestricted file upload in the mcpuk file editor (atk/attributes/fck/editor/filemanager/browser/mcpuk/connectors/php/config.php) in Achievo 1.2.0 up to and including 1.3.2 allows remote malicious users to execute arbitrary code by uploading a file with .php followed by a safe ex...
Achievo Achievo 1.2.0
Achievo Achievo 1.2.1
Achievo Achievo 1.3.0
Achievo Achievo 1.3.1
Achievo Achievo 1.3.2
1 EDB exploit
NA
CVE-2011-5147
Static code injection vulnerability in ajax_save_name.php in the Ajax File Manager module in the tinymce plugin in FreeWebshop 2.2.9 R2 and previous versions allows remote malicious users to inject arbitrary PHP code into data.php via the selected document, as demonstrated by a c...
Freewebshop Freewebshop 2.2.6
Freewebshop Freewebshop 2.2.5
Freewebshop Freewebshop
Freewebshop Freewebshop 2.2.9
Freewebshop Freewebshop 2.2.2
Freewebshop Freewebshop 2.2.1
Freewebshop Freewebshop 2.1
Freewebshop Freewebshop 2.2.3
Freewebshop Freewebshop 2.2.4
Freewebshop Freewebshop 2.2.7 Wip1 2
Freewebshop Freewebshop 2.2.7
1 EDB exploit
NA
CVE-2012-1125
Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin prior to 1.2 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with a PHP extension, then accessing it via a direct request to the fi...
Kishore Asokan Kish Guest Posting Plugin
Kishore Asokan Kish Guest Posting Plugin 1.0
1 EDB exploit
NA
CVE-2008-5968
Directory traversal vulnerability in print.php in PHP iCalendar 2.24 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the cookie_language parameter in a phpicalendar_* cookie, a different vector than CVE-2006-1...
Phpicalendar Phpicalendar 1.1
Phpicalendar Phpicalendar 1.0
Phpicalendar Phpicalendar 2.22
Phpicalendar Phpicalendar 2.23
Phpicalendar Phpicalendar 0.8
Phpicalendar Phpicalendar 0.7
Phpicalendar Phpicalendar 2.2
Phpicalendar Phpicalendar 2.21
Phpicalendar Phpicalendar 0.9
Phpicalendar Phpicalendar 2.0c
Phpicalendar Phpicalendar 2.0.1
Phpicalendar Phpicalendar 2.1
Phpicalendar Phpicalendar 0.9.5
Phpicalendar Phpicalendar 2.0
Phpicalendar Phpicalendar
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »