Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php-nuke vulnerabilities and exploits
(subscribe to this query)
905
VMScore
CVE-2008-4767
Unrestricted file upload vulnerability in the DownloadsPlus module in PHP-Nuke allows remote malicious users to execute arbitrary code by uploading a file with (1) .htm, (2) .html, or (3) .txt extensions, then accessing it via a direct request to the file. NOTE: the provenance of...
Php-nuke Downloadsplus Module
1 EDB exploit
445
VMScore
CVE-2004-1984
Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote malicious users to obtain sensitive information via a direct HTTP request to (1) phpinfo.php, (2) addpic.php, (3) config.php, (4) db_input.php, (5) displayecard.php, (6) ecard.php, (7) crop.inc.php, which reveal the full...
Coppermine Coppermine Photo Gallery 1.1 .0
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Francisco Burzi Php-nuke 7.2
Coppermine Coppermine Photo Gallery 1.0 Rc3
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 7.1
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.0
435
VMScore
CVE-2004-1985
Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote malicious users to inject arbitrary HTML or web script via the CPG_URL parameter.
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.0
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.1 .0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 7.1
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.2
Francisco Burzi Php-nuke 7.2
1 EDB exploit
505
VMScore
CVE-2004-1986
Directory traversal vulnerability in modules.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to read arbitrary files via a .. (dot dot) in the startdir parameter.
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.1 .0
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 7.2
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
1 EDB exploit
668
VMScore
CVE-2004-1987
picmgmtbatch.inc.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to execute arbitrary commands via shell metacharacters in the (1) $CONFIG['impath'] or (2) $CONFIG['jpeg_qual'] parameters.
Coppermine Coppermine Photo Gallery 1.0 Rc3
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.0 Final
Coppermine Coppermine Photo Gallery 1.2.2 B
Francisco Burzi Php-nuke 6.9
Coppermine Coppermine Photo Gallery 1.1 .0
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 7.2
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.2.1
755
VMScore
CVE-2004-1988
PHP remote file inclusion vulnerability in init.inc.php in Coppermine Photo Gallery 1.2.0 RC4 allows remote malicious users to execute arbitrary PHP code by modifying the CPG_M_DIR to reference a URL on a remote web server that contains functions.inc.php.
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.1 .0
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Francisco Burzi Php-nuke 7.2
Coppermine Coppermine Photo Gallery 1.2.2 B
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.0
Coppermine Coppermine Photo Gallery 1.0 Rc3
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 7.1
1 EDB exploit
755
VMScore
CVE-2004-1989
PHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote malicious users to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL on a remote web server that contains user_list_info_box.inc.
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.1 .0
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.0
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.2
Francisco Burzi Php-nuke 7.2
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
1 EDB exploit
685
VMScore
CVE-2008-0461
SQL injection vulnerability in index.php in the Search module in PHP-Nuke 8.0 FINAL and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the sid parameter in a comments action to modules.php. NOTE: some of t...
Francisco Burzi Php-nuke
1 EDB exploit
755
VMScore
CVE-2006-5494
Multiple PHP remote file inclusion vulnerabilities in modules/My_eGallery/public/displayCategory.php in the pandaBB module for PHP-Nuke allow remote malicious users to execute arbitrary PHP code via a URL in the (1) adminpath or (2) basepath parameters. NOTE: this issue might ove...
Phpnuke Php-nuke 8.0
1 EDB exploit
668
VMScore
CVE-2006-3598
SQL injection vulnerability in the Sections module for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the artid parameter in a viewarticle op.
Php-nuke Sections Module
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »