Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file inclusion vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2010-1946
Multiple PHP remote file inclusion vulnerabilities in openMairie Openregistrecil 1.02, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) autorisation_normale.class.php, (2) collectivite.class.php...
Openmairie Openregistrecil 1.02
1 EDB exploit
685
VMScore
CVE-2010-1947
Directory traversal vulnerability in scr/soustab.php in openMairie Openregistrecil 1.02, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter. NOTE: this may be...
Openmairie Openregistrecil 1.02
1 EDB exploit
685
VMScore
CVE-2010-1948
Directory traversal vulnerability in scr/soustab.php in openMairie Openfoncier 2.00, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CV...
Openmairie Openfoncier 2.00
1 EDB exploit
940
VMScore
CVE-2006-5911
Multiple PHP remote file inclusion vulnerabilities in Campware Campsite prior to 2.6.2 allow remote malicious users to execute arbitrary PHP code via a URL in the g_documentRoot parameter to (1) Alias.php, (2) Article.php, (3) ArticleAttachment.php, (4) ArticleComment.php, (5) Ar...
Campware.org Campsite 2.6.1
Campware.org Campsite 2.6.0
38 EDB exploits
770
VMScore
CVE-2006-4423
Multiple PHP remote file inclusion vulnerabilities in Bigace 1.8.2 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) GLOBALS[_BIGACE][DIR][admin] parameter in (a) system/command/admin.cmd.php, (b) admin/include/upload_form.php, and (c) admin/include/...
Bigace Bigace 1.8.2
4 EDB exploits
755
VMScore
CVE-2010-1467
Multiple PHP remote file inclusion vulnerabilities in openUrgence Vaccin 1.03 allow remote malicious users to execute arbitrary PHP code via a URL in the path_om parameter to (1) collectivite.class.php, (2) injection.class.php, (3) utilisateur.class.php, (4) droit.class.php, (5) ...
Francois Raynaud Openurgence Vaccin 1.03
1 EDB exploit
685
VMScore
CVE-2010-1466
Directory traversal vulnerability in scr/soustab.php in openUrgence Vaccin 1.03 allows remote malicious users to read arbitrary files via the dsn[phptype] parameter.
Francois Raynaud Openurgence Vaccin 1.03
1 EDB exploit
685
VMScore
CVE-2012-1671
Directory traversal vulnerability in index.php in phpPaleo 4.8b155 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
Nicolas Tormo Phppaleo
1 EDB exploit
785
VMScore
CVE-2006-1747
PHP remote file inclusion vulnerability in Virtual War (VWar) 1.5.0 allows remote malicious users to execute arbitrary PHP code via a URL in the vwar_root parameter to (1) admin/admin.php, (2) war.php, (3) stats.php, (4) news.php, (5) joinus.php, (6) challenge.php, (7) calendar.p...
Vwar Virtual War 1.5.0
7 EDB exploits
795
VMScore
CVE-2005-3519
Multiple PHP file inclusion vulnerabilities in MySource 2.14.0 allow remote malicious users to execute arbitrary PHP code and include arbitrary local files via the (1) INCLUDE_PATH and (2) SQUIZLIB_PATH parameters in new_upgrade_functions.php, (3) the INCLUDE_PATH parameter in in...
Mysource Mysource 2.14.0
Mysource Mysource 2.14.0rc2
9 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »