Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
geeklog geeklog 2 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-0810
PHP remote file inclusion vulnerability in MVCnPHP/BaseView.php in GeekLog 2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the glConf[path_libraries] parameter. NOTE: this might be a vulnerability in MVCnPHP rather than a vulnerabi...
Geeklog Geeklog 2
1 EDB exploit
755
VMScore
CVE-2007-2793
PHP remote file inclusion vulnerability in ImageImageMagick.php in Geeklog 2.x allows remote malicious users to execute arbitrary PHP code via a URL in the glConf[path_system] parameter.
Geeklog Geeklog 2.x
1 EDB exploit
383
VMScore
CVE-2011-4942
Multiple cross-site scripting (XSS) vulnerabilities in admin/configuration.php in Geeklog prior to 1.7.1sr1 allow remote malicious users to inject arbitrary web script or HTML via the (1) subgroup or (2) conf_group parameters. NOTE: this vulnerability might require a user-assiste...
Geeklog Geeklog 1.3.5
Geeklog Geeklog 1.3.8
Geeklog Geeklog 1.3.6
Geeklog Geeklog 1.3.7
Geeklog Geeklog 1.35
Geeklog Geeklog 1.5.0
Geeklog Geeklog 1.3.10
Geeklog Geeklog 1.5.1
Geeklog Geeklog 1.3
Geeklog Geeklog 1.4.0
Geeklog Geeklog
Geeklog Geeklog 1.3.9
Geeklog Geeklog 1.5.2
Geeklog Geeklog 1.3.11
694
VMScore
CVE-2006-2698
Geeklog 1.4.0sr2 and previous versions allows remote malicious users to obtain the full installation path via a direct request and possibly invalid arguments to (1) layout/professional/functions.php or (2) getimage.php.
Geeklog Geeklog 1.3.5
Geeklog Geeklog 1.3.10 Rc3
Geeklog Geeklog 1.4.0 Sr1
Geeklog Geeklog 1.3.8
Geeklog Geeklog 1.3.9 Sr2
Geeklog Geeklog 1.3.10 Rc2
Geeklog Geeklog 1.3.6
Geeklog Geeklog 1.4.0 Beta1
Geeklog Geeklog 1.3.9 Sr4
Geeklog Geeklog 1.3.11 Sr3
Geeklog Geeklog 1.3.9 Rc3
Geeklog Geeklog 1.3.7 Sr2
Geeklog Geeklog 1.3.11 Sr2
Geeklog Geeklog 1.3.7 Sr5
Geeklog Geeklog 1.3.8 1 Sr5
Geeklog Geeklog 1.3.7
Geeklog Geeklog 1.35
Geeklog Geeklog 1.3.9 Rc1
Geeklog Geeklog 1.3.10
Geeklog Geeklog 1.3.8 1 Sr2
Geeklog Geeklog 1.3.8 1 Sr6
Geeklog Geeklog 1.3.8 1 Sr1
755
VMScore
CVE-2006-0823
Multiple SQL injection vulnerabilities in Geeklog 1.4.0 prior to 1.4.0sr1 and 1.3.11 prior to 1.3.11sr4 allow remote malicious users to inject arbitrary SQL commands via the (1) userid variable to users.php or (2) sessid variable to lib-sessions.php.
Geeklog Geeklog 1.3.11 Sr3
Geeklog Geeklog 1.3.11 Sr2
Geeklog Geeklog 1.4.0
Geeklog Geeklog 1.3.11 Sr1
Geeklog Geeklog 1.3.11
1 EDB exploit
668
VMScore
CVE-2006-0824
Multiple unspecified vulnerabilities in lib-common.php in Geeklog 1.4.0 prior to 1.4.0sr1 and 1.3.11 prior to 1.3.11sr4 allow remote malicious users to include arbitrary local files and execute arbitrary code via (1) absolute paths in unspecified parameters and (2) the language c...
Geeklog Geeklog 1.3.11 Sr3
Geeklog Geeklog 1.3.11 Sr2
Geeklog Geeklog 1.4.0
Geeklog Geeklog 1.3.11 Sr1
Geeklog Geeklog 1.3.11
515
VMScore
CVE-2006-6225
Multiple PHP remote file inclusion vulnerabilities in GeekLog 1.4 allow remote malicious users to execute arbitrary code via a URL in the _CONF[path] parameter to (1) links/functions.inc, (2) polls/functions.inc, (3) spamx/BlackList.Examine.class.php, (4) spamx/DeleteComment.Acti...
Geeklog Geeklog 1.4.0 Sr1
Geeklog Geeklog 1.4.0 Beta1
Geeklog Geeklog 1.4.0 Sr2
Geeklog Geeklog 1.4.0 Sr3
Geeklog Geeklog 1.4.0
Geeklog Geeklog 1.4.0 Sr4
1 EDB exploit
445
VMScore
CVE-2005-4026
search.php in Geeklog 1.4.x prior to 1.4.0rc1, and 1.3.x prior to 1.3.11sr3, allows remote malicious users to obtain sensitive information via invalid (1) datestart and (2) dateend parameters, which leaks the web server path in an error message.
Geeklog Geeklog 1.4.0
Geeklog Geeklog
Geeklog Geeklog 1.3.11
383
VMScore
CVE-2006-3756
Cross-site scripting (XSS) vulnerability in Geeklog 1.4.0sr4 and previous versions, and 1.3.11sr6 and previous versions, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors when validating comments in (1) lib-comment.php (1.4.0sr4) or (2) ...
Geeklog Geeklog 1.4.0
Geeklog Geeklog 1.3.11
515
VMScore
CVE-2006-3362
Unrestricted file upload vulnerability in connectors/php/connector.php in FCKeditor mcpuk file manager, as used in (1) Geeklog 1.4.0 up to and including 1.4.0sr3, (2) toendaCMS 1.0.0 Shizouka Stable and previous versions, (3) WeBid 0.5.4, and possibly other products, when install...
Geeklog Geeklog 1.4.0 Sr1
Geeklog Geeklog 1.4.0 Sr2
Toenda Software Development Toendacms 0.6.2
Geeklog Geeklog 1.4.0 Sr3
Geeklog Geeklog 1.4.0
Toenda Software Development Toendacms 0.7
Toenda Software Development Toendacms 0.6.1
Toenda Software Development Toendacms 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »