Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-4957
Multiple directory traversal vulnerabilities in download.php in Chupix CMS 0.2.3 allow remote malicious users to read or overwrite arbitrary files via a .. (dot dot) in the (1) fichier or (2) repertoire parameter, or create arbitrary directories via a .. (dot dot) in the (3) repe...
Chupix Chupix Cms 0.2.3
1 EDB exploit
755
VMScore
CVE-2007-5099
PHP remote file inclusion vulnerability in show.php in David Watters Helplink 0.1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the file parameter.
David Watters Helplink 0.1.0
1 EDB exploit
755
VMScore
CVE-2008-6407
Directory traversal vulnerability in frame.php in ol'bookmarks manager 0.7.5 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the framefile parameter.
Brian Wilson Ol\\'bookmarks 0.7.5
1 EDB exploit
755
VMScore
CVE-2008-6414
SQL injection vulnerability in detail.php in AJ Auction Pro Platinum Skin 2 allows remote malicious users to execute arbitrary SQL commands via the item_id parameter.
Aj Square Aj Auction 2.0
1 EDB exploit
755
VMScore
CVE-2007-6657
PHP remote file inclusion vulnerability in source/includes/load_forum.php in Mihalism Multi Forum Host 3.0.x and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the mfh_root_path parameter.
Mihalism Multi Host
1 EDB exploit
435
VMScore
CVE-2008-5752
Directory traversal vulnerability in getConfig.php in the Page Flip Image Gallery plugin 0.2.2 and previous versions for WordPress, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the book_id parameter. NOTE: some of ...
Wordpress Page Flip Image Gallery Plugin 0.1.1
Wordpress Page Flip Image Gallery Plugin 0.1
Wordpress Page Flip Image Gallery Plugin
Wordpress Page Flip Image Gallery Plugin 0.2.1
Wordpress Page Flip Image Gallery Plugin 0.1.4
Wordpress Page Flip Image Gallery Plugin 0.1.3
Wordpress Page Flip Image Gallery Plugin 0.2.0
Wordpress Page Flip Image Gallery Plugin 0.1.6
1 EDB exploit
1000
VMScore
CVE-2008-6651
Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote malicious users to inject arbitrary PHP code into oxyhistory.php via the oxymsg parameter.
Oxyproject Oxybox 0.85
1 EDB exploit
755
VMScore
CVE-2007-3289
PHP remote file inclusion vulnerability in spaw/spaw_control.class.php in the WiwiMod 0.4 module for XOOPS allows remote malicious users to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a duplicate of CVE-2006-4656.
Xoops Wiwimod Module 0.4
1 EDB exploit
755
VMScore
CVE-2007-3297
Multiple PHP remote file inclusion vulnerabilities in Musoo 0.21 allow remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[ini_array][EXTLIB_PATH] parameter to (1) msDb.php, (2) modules/MusooTemplateLite.php, or (3) modules/SoundImporter.php.
Cybozu Labs Musoo 0.21
1 EDB exploit
505
VMScore
CVE-2008-6139
Directory traversal vulnerability in faqsupport/wce.download.php in WebBiscuits Modules Controller 1.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the download parameter.
Webbiscuits Modules Controller 1.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »