Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpmailer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6124
SQL injection vulnerability in the hotpot_delete_selected_attempts function in report.php in the HotPot module in Moodle 1.6 prior to 1.6.7, 1.7 prior to 1.7.5, 1.8 prior to 1.8.6, and 1.9 prior to 1.9.2 allows remote malicious users to execute arbitrary SQL commands via a crafte...
Moodle Moodle
Debian Debian Linux 4.0
NA
CVE-2009-0501
Unspecified vulnerability in the Calendar export feature in Moodle 1.8 prior to 1.8.8 and 1.9 prior to 1.9.4 allows malicious users to obtain sensitive information and conduct "brute force attacks on user accounts" via unknown vectors.
Moodle Moodle 1.8.6
Moodle Moodle 1.8.5
Moodle Moodle 1.9.2
Moodle Moodle 1.9.1
Moodle Moodle 1.8.1
Moodle Moodle 1.8.2
Moodle Moodle 1.8.7
Moodle Moodle 1.9.3
Moodle Moodle 1.8.3
Moodle Moodle 1.8.4
NA
CVE-2008-4796
The _httpsrequest function (Snoopy/Snoopy.class.php) in Snoopy 1.2.3 and previous versions, as used in (1) ampache, (2) libphp-snoopy, (3) mahara, (4) mediamate, (5) opendb, (6) pixelpost, and possibly other products, allows remote malicious users to execute arbitrary commands vi...
Snoopy Project Snoopy
Debian Debian Linux 4.0
Debian Debian Linux 5.0
Nagios Nagios
Wordpress Wordpress
NA
CVE-2008-4810
The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 before r2797 allows remote malicious users to execute arbitrary PHP code via vectors related to templates and (1) a dollar-sign character, aka "php executed in templates;" and (2) a doub...
Smarty Smarty 2.6.0
Smarty Smarty 2.4.0
Smarty Smarty 2.3.1
Smarty Smarty 1.5.1
Smarty Smarty 1.5.0
Smarty Smarty 1.4.0
Smarty Smarty 1.2.0
Smarty Smarty 1.1.0
Smarty Smarty 1.0b
Smarty Smarty 2.6.7
Smarty Smarty 2.6.9
Smarty Smarty 2.6.11
Smarty Smarty 2.6.12
Smarty Smarty 2.5.0
Smarty Smarty 2.3.0
Smarty Smarty 2.2.0
Smarty Smarty 2.1.1
Smarty Smarty 1.4.6
Smarty Smarty 1.4.5
Smarty Smarty 1.3.2
Smarty Smarty 1.0a
Smarty Smarty 1.0
NA
CVE-2008-4811
The _expand_quoted_text function in libs/Smarty_Compiler.class.php in Smarty 2.6.20 r2797 and previous versions allows remote malicious users to execute arbitrary PHP code via vectors related to templates and a \ (backslash) before a dollar-sign character.
Smarty Smarty 2.6.14
Smarty Smarty 2.6.15
Smarty Smarty 2.6.16
Smarty Smarty 2.4.2
Smarty Smarty 2.4.1
Smarty Smarty 2.0.1
Smarty Smarty 2.0.0
Smarty Smarty 1.4.3
Smarty Smarty 1.4.2
Smarty Smarty 1.4.1
Smarty Smarty 1.2.2
Smarty Smarty 1.2.1
Smarty Smarty 2.6.10
Smarty Smarty 2.6.17
Smarty Smarty 2.6.6
Smarty Smarty 2.6.0
Smarty Smarty 2.4.0
Smarty Smarty 2.3.1
Smarty Smarty 1.5.2
Smarty Smarty 1.5.1
Smarty Smarty 1.4.0
Smarty Smarty 1.2.0
NA
CVE-2008-5153
spell-check-logic.cgi in Moodle 1.8.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/spell-check-debug.log, (2) /tmp/spell-check-before, or (3) /tmp/spell-check-after temporary file.
Moodle Moodle 1.8.2
NA
CVE-2009-1669
The smarty_function_math function in libs/plugins/function.math.php in Smarty 2.6.22 allows context-dependent malicious users to execute arbitrary commands via shell metacharacters in the equation attribute of the math function. NOTE: some of these details are obtained from third...
Smarty Smarty 2.6.22
1 EDB exploit
NA
CVE-2009-1171
The TeX filter in Moodle 1.6 prior to 1.6.9+, 1.7 prior to 1.7.7+, 1.8 prior to 1.8.9, and 1.9 prior to 1.9.5 allows user-assisted malicious users to read arbitrary files via an input command in a "$$" sequence, which causes LaTeX to include the contents of the file.
Moodle Moodle 1.6.4
Moodle Moodle 1.6.1
Moodle Moodle 1.7.1
Moodle Moodle 1.8.5
Moodle Moodle 1.8.4
Moodle Moodle 1.9.3
Moodle Moodle 1.6.7
Moodle Moodle 1.6.8
Moodle Moodle 1.7.6
Moodle Moodle 1.8.2
Moodle Moodle 1.8.1
Moodle Moodle 1.8.8
Moodle Moodle 1.9.4
Moodle Moodle 1.6.3
Moodle Moodle 1.6.5
Moodle Moodle 1.6.0
Moodle Moodle 1.7.4
Moodle Moodle 1.7.5
Moodle Moodle 1.8.3
Moodle Moodle 1.8.6
Moodle Moodle 1.9.2
Moodle Moodle 1.9.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4