Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
local file inclusion vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-0742
Multiple directory traversal vulnerabilities in PowerScripts PowerNews 2.5.6 allow remote malicious users to read and include arbitrary files via a .. (dot dot) in the (1) subpage parameter in (a) categories.inc.php, (b) news.inc.php, (c) other.inc.php, (d) permissions.inc.php, (...
Powerscripts Powernews 2.5.6
1 EDB exploit
7.5
CVSSv2
CVE-2012-4997
Directory traversal vulnerability in acp/index.php in AneCMS allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the p parameter.
Anecms Anecms -
Anecms Anecms 2e2c583
1 EDB exploit
7.5
CVSSv2
CVE-2008-2672
Multiple directory traversal vulnerabilities in ErfurtWiki R1.02b and previous versions, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) ewiki_id and (2) ewiki_action parameters to fragments...
Erfurtwiki Erfurtwiki
1 EDB exploit
6.8
CVSSv2
CVE-2010-1935
Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to CVE...
Openmairie Openpresse 1.01
1 EDB exploit
6.8
CVSSv2
CVE-2010-1999
Directory traversal vulnerability in scr/soustab.php in OpenMairie Opencatalogue 1.024, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to...
Openmairie Opencatalogue 1.024
1 EDB exploit
6.8
CVSSv2
CVE-2011-0405
Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via directory traversal sequences in the pgvaction parameter.
Phpgedview Phpgedview 4.2.3
1 EDB exploit
NA
CVE-2022-34125
front/icon.send.php in the CMDB plugin prior to 3.0.3 for GLPI allows malicious users to gain read access to sensitive information via a _log/ pathname in the file parameter.
Glpi-project Cmdb
NA
CVE-2022-34127
The Managentities plugin prior to 4.0.2 for GLPI allows reading local files via directory traversal in the inc/cri.class.php file parameter.
Glpi-project Manageentities
5
CVSSv2
CVE-2020-13383
openSIS up to and including 7.4 allows Directory Traversal.
Os4ed Opensis
2.6
CVSSv2
CVE-2009-0286
Directory traversal vulnerability in upgrade/index.php in OpenGoo 1.1, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the form_data[script_class] parameter.
Opengoo Opengoo 1.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »