Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eidelweiss vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3204
Multiple PHP remote file inclusion vulnerabilities in Pecio CMS 2.0.5 allow remote malicious users to execute arbitrary PHP code via a URL in the template parameter to (1) post.php, (2) article.php, (3) blog.php, or (4) home.php in pec_templates/nova-blue/.
Pecio-cms Pecio Cms 2.0.5
1 EDB exploit
NA
CVE-2010-1951
Multiple directory traversal vulnerabilities in 60cycleCMS allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the DOCUMENT_ROOT parameter to (1) news.php, (2) submitComment.php, and (3) sqlConnect.php.
60cyclecms Project 60cyclecms 2.5.2
1 EDB exploit
NA
CVE-2010-1922
Multiple PHP remote file inclusion vulnerabilities in 29o3 CMS 0.1 allow remote malicious users to execute arbitrary PHP code via a URL in the LibDir parameter to (1) lib/page/pageDescriptionObject.php, and (2) layoutHeaderFuncs.php, (3) layoutManager.php, and (4) layoutParser.ph...
29o3 Cms 29o3 Cms 0.1
1 EDB exploit
NA
CVE-2010-1337
Multiple PHP remote file inclusion vulnerabilities in definitions.php in Lussumo Vanilla 1.1.10, and possibly 0.9.2 and other versions, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) include and (2) Configuration['LANGUAGE'] parameters.
Lussumo Vanilla 1.1.8
Lussumo Vanilla 1.1.7
Lussumo Vanilla 1.1.2
Lussumo Vanilla 1.1.1
Lussumo Vanilla
Lussumo Vanilla 1.1.9
Lussumo Vanilla 1.1.5
Lussumo Vanilla 1.1.4
Lussumo Vanilla 1.1.3
Lussumo Vanilla 0.9.2
Lussumo Vanilla 1.0.2
Lussumo Vanilla 1.0.1
Lussumo Vanilla 1.1.6
Lussumo Vanilla 1.1
Lussumo Vanilla 1.0.3
1 EDB exploit
NA
CVE-2010-1309
Directory traversal vulnerability in Irmin CMS (formerly Pepsi CMS) 0.6 BETA2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the w parameter to index.php.
Ermenegildo Fiorito Irmin Cms 0.6
1 EDB exploit
NA
CVE-2010-1299
Multiple PHP remote file inclusion vulnerabilities in DynPG CMS 4.1.0, and possibly earlier, when magic_quotes_gpc is disabled and register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) DefineRootToTool parameter to counter.ph...
Dynpg Dynpg
2 EDB exploits
NA
CVE-2008-7254
Directory traversal vulnerability in includes/template-loader.php in Irmin CMS (formerly Pepsi CMS) 0.5 and 0.6 BETA2, when register_globals is enabled, allows remote malicious users to include and execute arbitrary files via a .. (dot dot) in the _Root_Path parameter. NOTE: some...
Ermenegildo Fiorito Irmin Cms 0.6
Ermenegildo Fiorito Irmin Cms 0.5
1 EDB exploit
NA
CVE-2010-1268
Directory traversal vulnerability in index.php in justVisual CMS 2.0, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files directory traversal sequences in the p parameter. NOTE: some of these details are obtained from thir...
Fh54 Justvisual 2.0
1 EDB exploit
NA
CVE-2008-7176
Multiple directory traversal vulnerabilities in Facil CMS 0.1RC allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) change_lang parameter to index.php or (2) modload parameter to modules.php.
Celina Jorge Facil Cms 0.1
2 EDB exploits
NA
CVE-2008-5949
Multiple PHP remote file inclusion vulnerabilities in ccTiddly 1.7.4 and 1.7.6 allow remote malicious users to execute arbitrary PHP code via a URL in the cct_base parameter to (1) index.php; (2) handle/proxy.php; (3) header.php, (4) include.php, and (5) workspace.php in includes...
Tiddlywiki Cctiddly 1.7.4
Tiddlywiki Cctiddly 1.7.6
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »