Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
local file inclusion vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-4406
Directory traversal vulnerability in gallery.php in Brunetton LittlePhpGallery 1.0.2, when magic_quotes_gpc is disabled, allows remote malicious users to list, include, and execute arbitrary local files via a ..// (dot dot slash slash) in the repertoire parameter.
Brunetton Littlephpgallery 1.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2015-3648
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace prior to 7.2.6727 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the defaultlanguage parameter.
Montala Resourcespace
7.5
CVSSv2
CVE-2008-5993
Directory traversal vulnerability in image.php in Barcode Generator 1D (barcodegen) 2.0.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the code parameter.
Barcodephp Barcodegen 1d 1.2.4
Barcodephp Barcodegen 1d
Barcodephp Barcodegen 1d 1.3.0
1 EDB exploit
6.8
CVSSv2
CVE-2008-6271
Directory traversal vulnerability in index.php in TBmnetCMS 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the content parameter.
Tbmnet Tbmnetcms 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-4522
Multiple directory traversal vulnerabilities in JMweb MP3 Music Audio Search and Download Script allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the src parameter to (1) listen.php and (2) download.php.
Jesse-web Jmweb Mp3 Music Audio Search And Download Script
1 EDB exploit
7.5
CVSSv2
CVE-2007-5684
Multiple directory traversal vulnerabilities in TikiWiki 1.9.8.1 and previous versions allow remote malicious users to include and execute arbitrary files via an absolute pathname in (1) error_handler_file and (2) local_php parameters to (a) tiki-index.php, or (3) encoded "....
Tiki Tikiwiki Cms\\/groupware 1.9.4
Tiki Tikiwiki Cms\\/groupware 1.9.2
Tiki Tikiwiki Cms\\/groupware 1.9.8
Tiki Tikiwiki Cms\\/groupware 1.9.7
Tiki Tikiwiki Cms\\/groupware 1.9.6
Tiki Tikiwiki Cms\\/groupware 1.9.5
Tiki Tikiwiki Cms\\/groupware 1.9.0
Tiki Tikiwiki Cms\\/groupware 1.9.3
Tiki Tikiwiki Cms\\/groupware 1.9.1
Tiki Tikiwiki Cms\\/groupware 1.6.1
Tiki Tikiwiki Cms\\/groupware
1 EDB exploit
7.5
CVSSv2
CVE-2010-2143
Directory traversal vulnerability in index.php in Symphony CMS 2.0.7 allows remote malicious users to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the mode parameter.
Getsymphony Symphony 2.0.7
1 EDB exploit
6.8
CVSSv2
CVE-2008-6522
Multiple directory traversal vulnerabilities in the RenderFile function in ContentRender.class.php in Terracotta (aka OpenTerracotta) 0.6.1, and possibly other versions, allow remote malicious users to list arbitrary directories and read arbitrary files via a .. (dot dot) in the ...
Devraj Mukherjee Openterracotta 0.6.1
1 EDB exploit
5
CVSSv2
CVE-2008-6843
Directory traversal vulnerability in index.php in Fantastico, as used with cPanel 11.x, allows remote malicious users to read arbitrary files via a .. (dot dot) in the sup3r parameter.
Netenberg Fantastico De Luxe
Cpanel Cpanel 11.21
Cpanel Cpanel 11.8.6 Stable
Cpanel Cpanel 11.16
Cpanel Cpanel 11
Cpanel Cpanel 11.18.1
Cpanel Cpanel 11.18.3
Cpanel Cpanel 11.22.3
Cpanel Cpanel 11.18.4
Cpanel Cpanel 11.23.1 Current
Cpanel Cpanel 11.18.2
Cpanel Cpanel 11.22.1
Cpanel Cpanel 11.4.19
Cpanel Cpanel 11.8.6
Cpanel Cpanel 11.23.1
Cpanel Cpanel 11.22
Cpanel Cpanel 11.18
Cpanel Cpanel 11.19.3
Cpanel Cpanel 11.22.2
1 EDB exploit
6.8
CVSSv2
CVE-2009-3534
Directory traversal vulnerability in index.php in LionWiki 3.0.3, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the page parameter.
Lionwiki Lionwiki 3.0.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »