Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nukedx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4368
PHP remote file inclusion vulnerability in includes/functions_portal.php in IntegraMOD Portal 2.x and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Integramod Integramod Portal 2.0
1 EDB exploit
NA
CVE-2006-4369
Absolute path traversal vulnerability in includes/functions_portal.php in IntegraMOD Portal 2.x and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via an absolute pathname in the phpbb_root_path parameter.
Integramod Integramod Portal 2.0
1 EDB exploit
NA
CVE-2006-2731
Multiple SQL injection vulnerabilities in Enigma Haber 4.3 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in (a) e_mesaj_yas.asp, (b) edi_haber.asp, and (c) haber_devam.asp; (2) hid parameter in (d) yazdir.asp and (e)...
Enigma Haber Enigma Haber
Enigma Haber Enigma Haber 4.2
1 EDB exploit
NA
CVE-2006-1994
PHP remote file inclusion vulnerability in dForum 1.5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the DFORUM_PATH parameter to (1) about.php, (2) admin.php, (3) anmelden.php, (4) losethread.php, (5) config.php, (6) delpost.php, (...
Dforum Dforum 1.5
1 EDB exploit
NA
CVE-2006-2002
PHP remote file inclusion vulnerability in stats.php in MyGamingLadder 7.0 allows remote malicious users to execute arbitrary PHP code via a URL in the dir[base] parameter.
Mygamingladder Mygamingladder 7.0
1 EDB exploit
NA
CVE-2006-2005
Eval injection vulnerability in index.php in ClanSys 1.1 allows remote malicious users to execute arbitrary PHP code via PHP code in the page parameter, as demonstrated by using an "include" statement that is injected into the eval statement. NOTE: this issue has been d...
Clansys Clansys 1.1
1 EDB exploit
NA
CVE-2006-2028
Cross-site scripting (XSS) vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal.
Simplog Simplog
1 EDB exploit
NA
CVE-2006-2032
Multiple SQL injection vulnerabilities in Core CoreNews 2.0.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) icon_id and (2) userid parameters in preview.php.
Corenews Corenews
1 EDB exploit
NA
CVE-2006-6177
SQL injection vulnerability in system/core/users/users.profile.inc.php in Neocrome Seditio 1.10 and previous versions allows remote authenticated users to execute arbitrary SQL commands via a double-url-encoded id parameter to users.php that begins with a valid filename, as demon...
Neocrome Seditio
1 EDB exploit
NA
CVE-2006-2739
PHP remote file inclusion vulnerability in footers.php in Epicdesigns tinyBB 0.3, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the tinybb_footers parameter.
Epic Designs Tinybb
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »