Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php group vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1770
Multiple PHP remote file inclusion vulnerabilities in Azerbaijan Design & Development Group (AZDG) AzDGVote allow remote malicious users to execute arbitrary PHP code via a URL in the int_path parameter in (1) vote.php, (2) view.php, (3) admin.php, and (4) admin/index.php.
Azerbaijan Development Group Azdgvote 1.0
1 EDB exploit
NA
CVE-2006-5562
PHP remote file inclusion vulnerability in include/database.php in SourceForge (aka alexandria) 1.0.4 allows remote malicious users to execute arbitrary PHP code via the sys_dbtype parameter.
Open Source Technology Group Sourceforge 1.0.4
1 EDB exploit
NA
CVE-2006-1895
Direct static code injection vulnerability in includes/template.php in phpBB allows remote authenticated users with write access to execute arbitrary PHP code by modifying a template in a way that (1) bypasses a loose ".*" regular expression to match BEGIN and END state...
Phpbb Group Phpbb 2.0.9
NA
CVE-2006-2150
PHP remote file inclusion vulnerability in top/list.php in phpBB TopList 1.3.8 and previous versions allows remote malicious users to include arbitrary files via the returnpath parameter.
Phpbb Group Phpbb Toplist 1.3.8
NA
CVE-2006-1896
Unspecified vulnerability in phpBB allows remote authenticated users with Administration Panel access to execute arbitrary PHP code via crafted Font Colour 3 ($theme[fontcolor3] variable) and/or signature values, possibly involving the highlight functionality. NOTE: the original ...
Phpbb Group Phpbb
NA
CVE-2006-2152
PHP remote file inclusion vulnerability in admin/addentry.php in phpBB Advanced Guestbook 2.4.0 and previous versions, when register_globals is enabled, allows remote malicious users to include arbitrary files via the phpbb_root_path parameter.
Phpbb Group Phpbb Advanced Guestbook
1 EDB exploit
NA
CVE-2007-0881
PHP remote file inclusion vulnerability in the Seitenschutz plugin for OPENi-CMS 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) config[oi_dir] and possibly (2) config[openi_dir] parameters to open-admin/plugins/site_protection/index.php. NOTE...
Openi-cms Group Openi-cms 1.0
1 EDB exploit
NA
CVE-2005-2951
Directory traversal vulnerability in security.inc.php in AzDGDatingLite 2.1.3, and possibly earlier versions, allows remote malicious users to execute arbitrary PHP commands via ".." sequences and "%00" (trailing null byte) characters in the l parameter, which...
Azerbaijan Development Group Azdgdating 2.1.3
1 EDB exploit
NA
CVE-2008-2566
Multiple cross-site scripting (XSS) vulnerabilities in PHP Address Book 3.1.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the group parameter to (1) index.php or (2) the default URI.
Php-address Book Php-address Book
2 EDB exploits
NA
CVE-2002-0717
PHP 4.2.0 and 4.2.1 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which generates an error condition that is not properly handled and causes improper me...
Php Php 4.2.0
Php Php 4.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »