Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kingoftheworld vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2007-5802
Directory traversal vulnerability in index.php in Firewolf Technologies Synergiser 1.2 RC1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: this can be leveraged to obtain the path by ...
Firewolf Technologies Synergiser
2 EDB exploits
755
VMScore
CVE-2007-6159
SQL injection vulnerability in index.php in Tilde CMS 4.x and previous versions allows remote malicious users to execute arbitrary SQL commands via the aarstal parameter in a yeardetail action, a different vector than CVE-2006-1500.
Tilde Tilde Cms 4.0
1 EDB exploit
435
VMScore
CVE-2007-6160
Cross-site scripting (XSS) vulnerability in index.php in Tilde CMS 4.x and previous versions allows remote malicious users to inject arbitrary web script or HTML via the aarstal parameter in a yeardetail action.
Tilde Tilde Cms 4.0
1 EDB exploit
755
VMScore
CVE-2007-6164
Multiple SQL injection vulnerabilities in Eurologon CMS allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) reviews.php, (2) links.php and (3) articles.php.
Eurologon Eurologon Cms
1 EDB exploit
755
VMScore
CVE-2007-6185
Directory traversal vulnerability in users/files.php in Eurologon CMS allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter in a download action, as demonstrated by a certain PHP file containing database credentials.
Eurologon Eurologon Cms
1 EDB exploit
685
VMScore
CVE-2008-7163
Directory traversal vulnerability in mods/Integrated/index.php in SineCMS 2.3.5 and previous versions, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via the sine[config][index_main] parameter.
Sinecms Sinecms
Sinecms Sinecms 2.2.1
Sinecms Sinecms 2.0
Sinecms Sinecms 2.3.4
Sinecms Sinecms 2.1.1
Sinecms Sinecms 2.3.2
Sinecms Sinecms 2.2
Sinecms Sinecms 2.1
1 EDB exploit
755
VMScore
CVE-2007-6366
Multiple SQL injection vulnerabilities in SineCMS 2.3.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to mods/Calendar/index.php, accessed through a Calendar info action to mods.php; the id parameter to admin/mods_ad...
Sinecms Sinecms
1 EDB exploit
435
VMScore
CVE-2007-6367
Multiple cross-site scripting (XSS) vulnerabilities in the guestbook in SineCMS 2.3.4 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) username (user) or (2) comment (commento) field, different vectors than CVE-2007-2357.
Sinecms Sinecms
1 EDB exploit
755
VMScore
CVE-2007-6396
Direct static code injection vulnerability in index.php in Flat PHP Board 1.2 and previous versions allows remote malicious users to inject arbitrary PHP code via the (1) username, (2) password, and (3) email parameters when registering a user account, which can be executed by ac...
Myupb Flat Php Board 1.2
1 EDB exploit
755
VMScore
CVE-2007-5771
Flatnuke 3 (aka FlatnuX) allows remote malicious users to obtain administrative access via a myforum%00 cookie.
Flatnuke3 Flatnuke3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2023-38506
CVE-2024-37198
CVE-2023-45197
CVE-2024-38621
CVE-2024-30103
elevation of privilege
CVE-2024-0044
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »