Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2008-0503
Eval injection vulnerability in admin/op/disp.php in Netwerk Smart Publisher 1.0.1 allows remote malicious users to execute arbitrary PHP code via the filedata parameter.
Netwerk Smart Publisher 1.0.1
1 EDB exploit
755
VMScore
CVE-2008-2340
Multiple SQL injection vulnerabilities in News Manager 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) lang parameter to (a) advsearch.php, (b) archive.php, and (c) index.php, and the (2) pid parameter to (d) list_tagitems.php.
News Manager News Manager 2.0
1 EDB exploit
755
VMScore
CVE-2008-2341
PHP remote file inclusion vulnerability in ch_readalso.php in News Manager 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the read_xml_include parameter.
Avalonnet News Manager 2.0
1 EDB exploit
505
VMScore
CVE-2008-2342
Directory traversal vulnerability in attachments.php in News Manager 2.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the id parameter.
News Manager News Manager 2.0
1 EDB exploit
755
VMScore
CVE-2008-2343
News Manager 2.0 allows remote malicious users to bypass restrictions and obtain sensitive information via a direct request to (1) db/connect_str.php and (2) login/info.php.
News Manager News Manager 2.0
1 EDB exploit
505
VMScore
CVE-2007-1577
Directory traversal vulnerability in index.php in GeBlog 0.1 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the GLOBALS[tplname] parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is t...
Geblog Geblog 0.1
1 EDB exploit
945
VMScore
CVE-2007-2271
Directory traversal vulnerability in Rajneel Lal TotaRam USP FOSS Distribution 1.01 allows remote malicious users to read arbitrary files via a .. (dot dot) in the dnld parameter.
Rajneel Lal Totaram Usp Foss Distribution 1.01
1 EDB exploit
755
VMScore
CVE-2007-2298
Multiple PHP remote file inclusion vulnerabilities in Garennes 0.6.1 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the repertoire_config parameter to index.php in (1) cpe/, (2) direction/, or (3) professeurs/.
Gforge Garennes
1 EDB exploit
755
VMScore
CVE-2007-2301
Multiple PHP remote file inclusion vulnerabilities in audioCMS arash 0.1.4 allow remote malicious users to execute arbitrary PHP code via a URL in the arashlib_dir parameter to (1) edit.inc.php and (2) list_features.inc.php in arash_lib/include, and (3) arash_gadmin.class.php and...
Arash Audiocms 0.1.4
1 EDB exploit
755
VMScore
CVE-2007-2307
PHP remote file inclusion vulnerability in engine/engine.inc.php in WebKalk2 1.9.0 allows remote malicious users to execute arbitrary PHP code via a URL in the absolute_path parameter.
Webkalk2 Webkalk2 1.9.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »