Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kacper vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4063
Multiple PHP remote file inclusion vulnerabilities in Csaba Godor SAPID Blog Beta 2 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) root_path parameter to (a) usr/extensions/get_blog_infochannel.inc.php, (b) usr/extensions/get...
Csaba Godor Sapid Blog Beta 2 Initial
4 EDB exploits
6.4
CVSSv2
CVE-2006-4962
Directory traversal vulnerability in pbd_engine.php in Php Blue Dragon 2.9.1 and previous versions allows remote malicious users to read and execute arbitrary local files via a .. (dot dot) sequence via the phpExt parameter, as demonstrated by executing PHP code in a log file.
Blue Dragon Php Blue Dragon Platinum 2.8.0
Blue Dragon Php Blue Dragon Platinum 2.9.1
2 EDB exploits
6.8
CVSSv2
CVE-2006-2929
PHP remote file inclusion vulnerability in contrib/forms/evaluation/C_FormEvaluation.class.php in OpenEMR 2.8.1 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[fileroot] parameter.
Openemr Openemr
1 EDB exploit
7.5
CVSSv2
CVE-2006-2962
PHP remote file inclusion vulnerability in sql_fcnsOLD.php in Emergenices Personnel Information System (Empris) 20020923 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phormationdir parameter.
Oxfam Australia Emergencies Personnel Information System
1 EDB exploit
7.5
CVSSv2
CVE-2006-2982
Multiple PHP remote file inclusion vulnerabilities in Enterprise Timesheet and Payroll Systems (EPS) 1.1 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the absolutepath parameter in (1) footer.php and (2) admin/footer.php.
Enterprise Payroll Systems Enterprise Payroll Systems 1.0 Alpha
Enterprise Payroll Systems Enterprise Payroll Systems 1.01 Alpha
Enterprise Payroll Systems Enterprise Payroll Systems 1.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-2996
PHP remote file inclusion vulnerability in inc/design.inc.php in LoveCompass aePartner 0.8.3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the dir[data] parameter.
Lovecompass Aepartner 0.8.3
1 EDB exploit
7.5
CVSSv2
CVE-2006-3028
PHP remote file inclusion vulnerability in stat_modules/users_age/module.php in Minerva 2.0.8a Build 237 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Minerva Minerva 2.0.8a Build 237
1 EDB exploit
7.5
CVSSv2
CVE-2006-4239
PHP remote file inclusion vulnerability in include/urights.php in Outreach Project Tool (OPT) Max 1.2.6 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the CRM_inc parameter.
Outreach Project Tool Opt Max
1 EDB exploit
6.4
CVSSv2
CVE-2006-2860
PHP remote file inclusion vulnerability in Webspotblogging 3.0.1 allows remote malicious users to execute arbitrary PHP code via a URL in the path parameter to (1) inc/logincheck.inc.php, (2) inc/adminheader.inc.php, (3) inc/global.php, or (4) inc/mainheader.inc.php. NOTE: some o...
Webspot Webspotblogging 3.0
Webspot Webspotblogging 3.0.1
1 EDB exploit
5.1
CVSSv2
CVE-2006-2863
PHP remote file inclusion vulnerability in class.cs_phpmailer.php in CS-Cart 1.3.3 allows remote malicious users to execute arbitrary PHP code via a URL in the classes_dir parameter.
Cs-cart Cs-cart 1.3.0
Cs-cart Cs-cart
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »