Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
myphpim myphpim 01.05 vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2006-0167
SQL injection vulnerability in MyPhPim 01.05 allows remote malicious users to execute arbitrary SQL commands via the (1) cal_id parameter in calendar.php3 and the (2) password field on the login page.
Myphpim Myphpim 01.05
2 EDB exploits
383
VMScore
CVE-2006-0168
Cross-site scripting (XSS) vulnerability in MyPhPim 01.05 allows remote malicious users to inject arbitrary web script or HTML via the description field on the "Create New todo" page.
Myphpim Myphpim 01.05
668
VMScore
CVE-2006-0169
addresses.php3 in MyPhPim 01.05 does not restrict uploaded files, which allows remote malicious users to execute arbitrary PHP code via the pdbfile variable, then directly accessing those files from the uploads directory.
Myphpim Myphpim 01.05
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started