Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
indoushka vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1199
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) BASE_path parameter to base_ag_main.php, (2) base_db_setup.php, (3) base_graph_common.php, (4) bas...
Secureideas Basic Analysis And Security Engine 1.4.5
38 EDB exploits
NA
CVE-2012-1200
Multiple PHP remote file inclusion vulnerabilities in Nova CMS allow remote malicious users to execute arbitrary PHP code via a URL in the (1) fileType parameter to optimizer/index.php, (2) id parameter to administrator/modules/moduleslist.php, (3) filename parameter to includes/...
Nova-cms Nova Cms -
4 EDB exploits
NA
CVE-2010-2005
Multiple PHP remote file inclusion vulnerabilities in DataLife Engine (DLE) 8.3 allow remote malicious users to execute arbitrary PHP code via a URL in (1) the selected_language parameter to engine/inc/include/init.php, (2) the config[langs] parameter to engine/inc/help.php, (3) ...
Datalifecms Datalife Engine 8.3
4 EDB exploits
NA
CVE-2010-0366
Multiple unrestricted file upload vulnerabilities in (1) register.php and (2) addvideo.php in BitScripts Bits Video Script 2.04 and 2.05 Gold Beta allow remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a dire...
Bitscripts Bits Video Script 2.04
Bitscripts Bits Video Script 2.05
2 EDB exploits
NA
CVE-2010-1111
Multiple cross-site scripting (XSS) vulnerabilities in Jokes Complete Website allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to joke.php and the (2) searchingred parameter to results.php.
Easysitenetwork Jokes Complete Website
2 EDB exploits
NA
CVE-2010-0367
Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, and possibly 2.04, allow remote malicious users to execute arbitrary PHP code via a URL in the rowptem[template] parameter to (1) showcasesearch.php and (2) showcase2search.php.
Bitscripts Bits Video Script 2.04
Bitscripts Bits Video Script 2.05
2 EDB exploits
NA
CVE-2010-0725
Cross-site scripting (XSS) vulnerability in showimg.php in Arab Cart 1.0.2.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Mhd Zaher Ghaibeh Arab Cart 1.0.2.0
1 EDB exploit
NA
CVE-2010-0754
Cross-site scripting (XSS) vulnerability in index.php/Special/Main/Templates in WikyBlog 1.7.2 and 1.7.3 rc2 allows remote malicious users to inject arbitrary web script or HTML via the which parameter in a copy action.
Wikyblog Wikyblog 1.7.2
Wikyblog Wikyblog 1.7.3
1 EDB exploit
NA
CVE-2010-0755
PHP remote file inclusion vulnerability in include/WBmap.php in WikyBlog 1.7.3 rc2 allows remote malicious users to execute arbitrary PHP code via a URL in the langFile parameter.
Wikyblog Wikyblog 1.7.3
1 EDB exploit
NA
CVE-2010-0757
Unrestricted file upload vulnerability in index.php/Attach in WikyBlog 1.7.3rc2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension using the uploadform action, then accessing it via a direct request to the file in userfile...
Wikyblog Wikyblog 1.7.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »