Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file inclusion vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1948
Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CV...
Openmairie Openfoncier 2.00
1 EDB exploit
NA
CVE-2012-1037
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.78 up to and including 0.80.61 allows remote authenticated users to execute arbitrary PHP code via a URL in the sub_type parameter.
Glpi-project Glpi 0.80
Glpi-project Glpi 0.80.1
Glpi-project Glpi 0.80.2
Glpi-project Glpi 0.80.3
Glpi-project Glpi 0.78
Glpi-project Glpi 0.78.1
Glpi-project Glpi 0.78.3
Glpi-project Glpi 0.78.5
Glpi-project Glpi 0.80.4
Glpi-project Glpi 0.80.6
Glpi-project Glpi 0.78.2
Glpi-project Glpi 0.78.4
Glpi-project Glpi 0.80.5
Glpi-project Glpi 0.80.61
NA
CVE-2010-1927
Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) ser...
Openmairie Opencourrier 2.02
Openmairie Opencourrier 2.03
1 EDB exploit
NA
CVE-2006-5911
Multiple PHP remote file inclusion vulnerabilities in Campware Campsite prior to 2.6.2 allow remote malicious users to execute arbitrary PHP code via a URL in the g_documentRoot parameter to (1) Alias.php, (2) Article.php, (3) ArticleAttachment.php, (4) ArticleComment.php, (5) Ar...
Campware.org Campsite 2.6.1
Campware.org Campsite 2.6.0
38 EDB exploits
NA
CVE-2006-4423
Multiple PHP remote file inclusion vulnerabilities in Bigace 1.8.2 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) GLOBALS[_BIGACE][DIR][admin] parameter in (a) system/command/admin.cmd.php, (b) admin/include/upload_form.php, and (c) admin/include/...
Bigace Bigace 1.8.2
4 EDB exploits
NA
CVE-2010-1467
Multiple PHP remote file inclusion vulnerabilities in openUrgence Vaccin 1.03 allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) collectivite.class.php, (2) injection.class.php, (3) utilisateur.class.php, (4) droit.class.php, (5) ...
Francois Raynaud Openurgence Vaccin 1.03
1 EDB exploit
NA
CVE-2012-1671
Directory traversal vulnerability in index.php in phpPaleo 4.8b155 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
Nicolas Tormo Phppaleo
1 EDB exploit
NA
CVE-2010-1466
Directory traversal vulnerability in scr/soustab.php in openUrgence Vaccin 1.03 allows remote malicious users to read arbitrary files via the dsn[phptype] parameter.
Francois Raynaud Openurgence Vaccin 1.03
1 EDB exploit
NA
CVE-2006-1747
PHP remote file inclusion vulnerability in Virtual War (VWar) 1.5.0 allows remote malicious users to execute arbitrary PHP code via a URL in the vwar_root parameter to (1) admin/admin.php, (2) war.php, (3) stats.php, (4) news.php, (5) joinus.php, (6) challenge.php, (7) calendar.p...
Vwar Virtual War 1.5.0
7 EDB exploits
NA
CVE-2005-3519
Multiple PHP file inclusion vulnerabilities in MySource 2.14.0 allow remote malicious users to execute arbitrary PHP code and include arbitrary local files via the (1) INCLUDE_PATH and (2) SQUIZLIB_PATH parameters in new_upgrade_functions.php, (3) the INCLUDE_PATH parameter in in...
Mysource Mysource 2.14.0
Mysource Mysource 2.14.0rc2
9 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »