Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file inclusion vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2006-5762
PHP remote file inclusion vulnerability in forgot_pass.php in Free File Hosting 1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the AD_BODY_TEMP parameter. NOTE: this issue was later reported for the "File Upload System"...
Free Php Scripts Free Image Hosting 2.0
Free Php Scripts Free File Hosting
1 EDB exploit
7.5
CVSSv2
CVE-2006-6285
PHP remote file inclusion vulnerability in index.php in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) 1.5.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the externalConfig parameter. NOTE: CVE and other third part...
Kai Blankenhorn Bitfolge Simple And Nice Index File
NA
CVE-2023-5099
The HTML filter and csv-file search plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.7 via the 'src' attribute of the 'csvsearch' shortcode. This allows authenticated attackers, with contributor-level permissions a...
Jonashjalmarsson Html Filter And Csv-file Search
7.5
CVSSv2
CVE-2006-3019
Multiple PHP remote file inclusion vulnerabilities in phpCMS 1.2.1pl2 allow remote malicious users to execute arbitrary PHP code via a URL in the PHPCMS_INCLUDEPATH parameter to files in parser/include/ including (1) class.parser_phpcms.php, (2) class.session_phpcms.php, (3) clas...
Phpcms Phpcms 1.2.1 P12
10 EDB exploits
6.5
CVSSv2
CVE-2012-1037
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.78 up to and including 0.80.61 allows remote authenticated users to execute arbitrary PHP code via a URL in the sub_type parameter.
Glpi-project Glpi 0.80
Glpi-project Glpi 0.80.1
Glpi-project Glpi 0.80.2
Glpi-project Glpi 0.80.3
Glpi-project Glpi 0.78
Glpi-project Glpi 0.78.1
Glpi-project Glpi 0.78.3
Glpi-project Glpi 0.78.5
Glpi-project Glpi 0.80.4
Glpi-project Glpi 0.80.6
Glpi-project Glpi 0.78.2
Glpi-project Glpi 0.78.4
Glpi-project Glpi 0.80.5
Glpi-project Glpi 0.80.61
6.8
CVSSv2
CVE-2010-1945
Multiple PHP remote file inclusion vulnerabilities in openMairie Openfoncier 2.00, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) action.class.php, (2) architecte.class.php, (3) avis.class.php...
Openmairie Openfoncier 2.00
1 EDB exploit
6.8
CVSSv2
CVE-2010-1934
Multiple PHP remote file inclusion vulnerabilities in openMairie openPlanning 1.00, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) categorie.class.php, (2) profil.class.php, (3) collectivite.c...
Openmairie Openplanning 1.00
1 EDB exploit
6.8
CVSSv2
CVE-2010-1926
Directory traversal vulnerability in scr/soustab.php in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a rela...
Openmairie Opencourrier 2.02
Openmairie Opencourrier 2.03
1 EDB exploit
6.8
CVSSv2
CVE-2010-1927
Multiple PHP remote file inclusion vulnerabilities in openMairie openCourrier 2.02 and 2.03 beta, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) bible.class.php, (2) dossier.class.php, (3) ser...
Openmairie Opencourrier 2.02
Openmairie Opencourrier 2.03
1 EDB exploit
6.8
CVSSv2
CVE-2010-1928
Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to C...
Openmairie Openplanning 1.00
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »