Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
local file inclusion vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8084
Directory traversal vulnerability in oc-includes/osclass/controller/ajax.php in OSClass prior to 3.4.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the ajaxfile parameter in a custom action.
Osclass Osclass
NA
CVE-2008-2672
Multiple directory traversal vulnerabilities in ErfurtWiki R1.02b and previous versions, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) ewiki_id and (2) ewiki_action parameters to fragments...
Erfurtwiki Erfurtwiki
1 EDB exploit
NA
CVE-2010-1936
Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the dsn[phptype] parameter, a related issue to...
Openmairie Opencominterne 1.01
1 EDB exploit
NA
CVE-2010-2850
Directory traversal vulnerability in productionnu2/fileuploader.php in nuBuilder 10.04.20, and possibly other versions prior to 10.07.12, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the dir parameter.
Nusoftware Nubuilder 09.09.23
Nusoftware Nubuilder 09.08.20
Nusoftware Nubuilder
Nusoftware Nubuilder 09.07.24
Nusoftware Nubuilder 09.06.26
Nusoftware Nubuilder 09.06.10
1 EDB exploit
NA
CVE-2012-4997
Directory traversal vulnerability in acp/index.php in AneCMS allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the p parameter.
Anecms Anecms -
Anecms Anecms 2e2c583
1 EDB exploit
7.5
CVSSv3
CVE-2020-13383
openSIS up to and including 7.4 allows Directory Traversal.
Os4ed Opensis
NA
CVE-2008-5819
Directory traversal vulnerability in eDNews_archive.php in eDreamers eDNews 2, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lg parameter. NOTE: some of these details are obtained from third...
Edreamers Ednews 2.0
1 EDB exploit
NA
CVE-2008-5948
Directory traversal vulnerability in index.php in BNCwi 1.04 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the newlanguage parameter.
Bncwi Bncwi
Bncwi Bncwi 1.03
1 EDB exploit
NA
CVE-2008-5993
Directory traversal vulnerability in image.php in Barcode Generator 1D (barcodegen) 2.0.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the code parameter.
Barcodephp Barcodegen 1d 1.2.4
Barcodephp Barcodegen 1d
Barcodephp Barcodegen 1d 1.3.0
1 EDB exploit
NA
CVE-2007-1232
Directory traversal vulnerability in SQLiteManager 1.2.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in a SQLiteManager_currentTheme cookie.
Sqlite Manager Sqlite Manager 1.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »