Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
770
VMScore
CVE-2006-4063
Multiple PHP remote file inclusion vulnerabilities in Csaba Godor SAPID Blog Beta 2 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) root_path parameter to (a) usr/extensions/get_blog_infochannel.inc.php, (b) usr/extensions/get...
Csaba Godor Sapid Blog Beta 2 Initial
4 EDB exploits
650
VMScore
CVE-2006-4962
Directory traversal vulnerability in pbd_engine.php in Php Blue Dragon 2.9.1 and previous versions allows remote malicious users to read and execute arbitrary local files via a .. (dot dot) sequence via the phpExt parameter, as demonstrated by executing PHP code in a log file.
Blue Dragon Php Blue Dragon Platinum 2.8.0
Blue Dragon Php Blue Dragon Platinum 2.9.1
2 EDB exploits
755
VMScore
CVE-2006-4239
PHP remote file inclusion vulnerability in include/urights.php in Outreach Project Tool (OPT) Max 1.2.6 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the CRM_inc parameter.
Outreach Project Tool Opt Max
1 EDB exploit
755
VMScore
CVE-2006-4287
Multiple PHP remote file inclusion vulnerabilities in NES Game and NES System c108122 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) phphtmllib parameter to (a) phphtmllib/includes.php; tag_utils/ scripts including (b) divtag...
Nes Game Nes Game C108122
Nes System Nes System C108122
1 EDB exploit
505
VMScore
CVE-2006-4420
Directory traversal vulnerability in include_lang.php in Phaos 0.9.2 allows remote malicious users to include arbitrary local files via ".." sequences in the lang parameter.
Phaos Phaos 0.9
Phaos Phaos 0.9.2
Phaos Phaos 0.9.1
1 EDB exploit
515
VMScore
CVE-2006-4448
Multiple PHP remote file inclusion vulnerabilities in interact 2.2, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the (1) CONFIG[BASE_PATH] parameter in (a) admin/autoprompter.php and (b) includes/common.inc.php, and the...
Interact Learning Community Environment Interact 2.2
1 EDB exploit
645
VMScore
CVE-2006-4458
Directory traversal vulnerability in calendar/inc/class.holidaycalc.inc.php in phpGroupWare 0.9.16.010 and previous versions allows remote malicious users to include arbitrary local files via a .. (dot dot) sequence and trailing null (%00) byte in the GLOBALS[phpgw_info][user][pr...
Phpgroupware Phpgroupware 0.9.16.010
1 EDB exploit
755
VMScore
CVE-2006-4531
PHP remote file inclusion vulnerability in lib/config.php in Pheap CMS 1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the lpref parameter.
Bare Concept Media Pheap Cms
1 EDB exploit
755
VMScore
CVE-2008-5199
PHP remote file inclusion vulnerability in include.php in PHPOutsourcing IdeaBox (aka IdeBox) 1.1 allows remote malicious users to execute arbitrary PHP code via a URL in the gorumDir parameter.
Phpoutsourcing Ideabox 1.1
1 EDB exploit
755
VMScore
CVE-2007-3430
SQL injection vulnerability in index.php in Simple Invoices 2007 05 25 allows remote malicious users to execute arbitrary SQL commands via the submit parameter in an email action.
Simple Invoices Simple Invoices 2007-05-25
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »