Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1779
Cross-site scripting (XSS) vulnerability in login.php in Jeremy Ashcraft Simplog 0.9.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the btag parameter.
Simplog Simplog
1 EDB exploit
NA
CVE-2006-1828
SQL injection vulnerability in php121language.php in PHP121 1.4 allows remote malicious users to execute arbitrary SQL commands and execute arbitrary code via the sess_username variable, as set by the php121un HTTP COOKIE parameter, which is used in multiple files including php12...
Php121 Php121 Instant Messenger
1 EDB exploit
NA
CVE-2006-1831
Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other versions prior to 2.25 allows remote malicious users to execute arbitrary commands via a leading ; (semicolon) in the name parameter in a systemdoc action, which is injected into phpinfo....
Coder-world Sysinfo 1.21
1 EDB exploit
NA
CVE-2006-1832
sysinfo.cgi in sysinfo 1.21 allows remote malicious users to obtain the installation path via the debugger action.
Coder-world Sysinfo 1.21
1 EDB exploit
NA
CVE-2006-0583
SQL injection vulnerability in mailarticle.php in Clever Copy 3.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Clever Copy Clever Copy 1.0.0
Clever Copy Clever Copy 1.0.1
Clever Copy Clever Copy 1.0.2
Clever Copy Clever Copy 1.0.3
Clever Copy Clever Copy 2.0
Clever Copy Clever Copy 2.0a
Clever Copy Clever Copy 3.0
1 EDB exploit
NA
CVE-2006-2889
Multiple SQL injection vulnerabilities in index.php in Pixelpost 1-5rc1-2 and previous versions allow remote malicious users to execute arbitrary SQL commands, and leverage them to gain administrator privileges, via the (1) category or (2) archivedate parameter.
Pixelpost Pixelpost
1 EDB exploit
NA
CVE-2006-0891
Multiple directory traversal vulnerabilities in NOCC Webmail 1.0 allow remote malicious users to include arbitrary files via .. (dot dot) sequences and a trailing NULL (%00) byte in (1) the _SESSION['nocc_theme'] parameter in (a) html/footer.php; and (2) the lang and (3...
Nocc Nocc 1.0
1 EDB exploit
NA
CVE-2006-1031
config/config_inc.php in iGENUS Webmail 2.02 and previous versions allows remote malicious users to include arbitrary local files via the SG_HOME parameter.
Igenus Igenus Webmail 2.0
Igenus Igenus Webmail 2.01
Igenus Igenus Webmail 2.02
1 EDB exploit
NA
CVE-2006-1346
Directory traversal vulnerability in inc/setLang.php in Greg Neustaetter gCards 1.45 and previous versions allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in a lang[*][file] parameter, as demonstrated by injecting PHP s...
Greg Neustaetter Gcards
Greg Neustaetter Gcards 1.43
Greg Neustaetter Gcards 1.44
1 EDB exploit
NA
CVE-2006-1480
Directory traversal vulnerability in start.php in WebAlbum 2.02 allows remote malicious users to include arbitrary files and execute commands by (1) injecting code into local log files via GET commands, then (2) accessing that log via a .. (dot dot) sequence and a trailing null (...
Duda Webalbum
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »