Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r0t vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2007-3346
Directory traversal vulnerability in index.php in PHPAccounts 0.5 allows remote malicious users to include arbitrary local files via unspecified manipulations of the page parameter.
Php Accounts Php Accounts 0.5
1 EDB exploit
7.8
CVSSv2
CVE-2005-4039
Directory traversal vulnerability in arhiva.php in Web4Future Portal Solutions News Portal allows remote malicious users to read arbitrary files via the dir parameter.
Web4future Portal Solutions
1 EDB exploit
7.5
CVSSv2
CVE-2006-3777
PHP remote file inclusion vulnerability in index.php in IDevSpot PhpLinkExchange 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Idevspot Phplinkexchange 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-3776
PHP remote file inclusion vulnerability in order/index.php in IDevSpot (1) PhpHostBot 1.0 and (2) AutoHost 3.0 allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Idevspot Autohost 3.0
Idevspot Phphostbot 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-2255
Multiple SQL injection vulnerabilities in Creative Community Portal 1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) article_id parameter to (a) ArticleView.php, (2) forum_id parameter to (b) DiscView.php or (c) Discussions.php,...
Creative Software Community Portal 1.1
6 EDB exploits
7.5
CVSSv2
CVE-2006-2179
Multiple SQL injection vulnerabilities in CyberBuild allow remote malicious users to execute arbitrary SQL commands via the (1) SessionID parameter to login.asp or (2) ProductIndex parameter to browse0.htm.
Smartwin Technology Cyberoffice Warehouse Builder
2 EDB exploits
7.5
CVSSv2
CVE-2006-1947
Multiple SQL injection vulnerabilities in plexum.php in NicPlex Plexum X5 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) pagesize, (2) maxrec, and (3) startpos parameters.
Nicplex Plexum
1 EDB exploit
7.5
CVSSv2
CVE-2006-1849
Multiple SQL injection vulnerabilities in members_only/index.cgi in xFlow 5.46.11 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) position and (2) id parameter.
Skymarx Solutions Xflow
1 EDB exploit
7.5
CVSSv2
CVE-2006-1852
SQL injection vulnerability in category.php in Article Publisher Pro 1.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cname parameter.
Scriptsfrenzy Article Publisher Pro
1 EDB exploit
7.5
CVSSv2
CVE-2006-1781
PHP remote file inclusion vulnerability in functions.php in Circle R Monster Top List (MTL) 1.4 allows remote malicious users to execute arbitrary PHP code via a URL in the root_path parameter. NOTE: It was later reported that 1.4.2 and previous versions are affected.
Circle R Monster Top List
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »