Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
houssamix vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2008-0260
minimal Gallery 0.8 allows remote malicious users to obtain configuration information via a direct request to php_info.php, which calls the phpinfo function.
Minimal Design Minimal Gallery 0.8
1 EDB exploit
5
CVSSv2
CVE-2008-0425
Absolute path traversal vulnerability in explorerdir.php in Frimousse 0.0.2 allows remote malicious users to read arbitrary files and list arbitrary directories via a full pathname in the name parameter.
Frimousse Frimousse 0.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2008-0502
PHP remote file inclusion vulnerability in templates/Official/part_userprofile.php in Connectix Boards 0.8.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the template_path parameter.
Connectix Connectix Boards 0.8.1
Connectix Connectix Boards
1 EDB exploit
6.4
CVSSv2
CVE-2008-0259
Multiple directory traversal vulnerabilities in _mg/php/mg_thumbs.php in minimal Gallery 0.8 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) thumbcat and (2) thumb parameters.
Minimal Design Minimal Gallery 0.8
1 EDB exploit
6.8
CVSSv2
CVE-2008-0283
PHP remote file inclusion vulnerability in /aides/index.php in DomPHP 0.81 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Domphp Domphp
1 EDB exploit
7.5
CVSSv2
CVE-2008-0468
SQL injection vulnerability in category.php in Flinx 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Flinx Flinx
1 EDB exploit
7.5
CVSSv2
CVE-2008-0490
SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Wordpress Wp Cal Plugin 0.3
1 EDB exploit
7.5
CVSSv2
CVE-2008-0491
SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote malicious users to execute arbitrary SQL commands via the album parameter.
Fgallery Project Fgallery 2.4.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-2454
SQL injection vulnerability in the xsstream-dm (com_xsstream-dm) component 0.01 Beta for Joomla! allows remote malicious users to execute arbitrary SQL commands via the movie parameter to index.php.
Joomla Com Xsstream-dm 0.01 Beta
1 EDB exploit
6.8
CVSSv2
CVE-2008-2217
Directory traversal vulnerability in cm/graphie.php in Content Management System 0.6.1 for Phprojekt allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the cm_imgpath parameter.
Mario Valdez Content Management System 0.6.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »