Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2006-6853
Buffer overflow in Durian Web Application Server 3.02 freeware on Windows allows remote malicious users to execute arbitrary code via a long string in a crafted packet to TCP port 4002.
Mozilla Durian Web Application Server 3.02
2 EDB exploits
7.5
CVSSv2
CVE-2006-3262
SQL injection vulnerability in the Weblinks module (weblinks.php) in Mambo 4.6rc1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the title parameter.
Mambo Mambo
2 EDB exploits
7.5
CVSSv2
CVE-2006-7172
Multiple SQL injection vulnerabilities in php-stats.recphp.php in PHP-Stats 0.1.9.1b and previous versions allow remote malicious users to execute arbitrary code via a leading dotted-quad IP address string in the (1) PC-REMOTE-ADDR HTTP header, which is inserted into $_SERVER[...
Php-stats Php-stats
2 EDB exploits
10
CVSSv2
CVE-2007-6493
The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and previous versions allows remote malicious users to execute arbitrary code via a certain argument to the SetHandler method.
Imesh.com Imesh
2 EDB exploits
5.1
CVSSv2
CVE-2006-2583
PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[DIR_LIBS] parameter.
Nucleus Group Nucleus Cms
1 EDB exploit
5.1
CVSSv2
CVE-2006-2868
Multiple PHP remote file inclusion vulnerabilities in Claroline 1.7.6 allow remote malicious users to execute arbitrary PHP code via a URL in the includePath cookie to (1) auth/extauth/drivers/mambo.inc.php or (2) auth/extauth/drivers/postnuke.inc.php.
Claroline Claroline 1.7.6
1 EDB exploit
5
CVSSv2
CVE-2006-3104
users/index.php in Bitweaver 1.3 allows remote malicious users to obtain sensitive information via an invalid sort_mode parameter, which reveals the installation path and database information in the resultant error message.
Bitweaver Bitweaver 1.3
1 EDB exploit
5
CVSSv2
CVE-2006-3105
CRLF injection vulnerability in Bitweaver 1.3 allows remote malicious users to conduct HTTP response splitting attacks by via CRLF sequences in multiple unspecified parameters that are injected into HTTP headers, as demonstrated by the BWSESSION parameter in index.php.
Bitweaver Bitweaver 1.3
1 EDB exploit
5.1
CVSSv2
CVE-2006-3362
Unrestricted file upload vulnerability in connectors/php/connector.php in FCKeditor mcpuk file manager, as used in (1) Geeklog 1.4.0 up to and including 1.4.0sr3, (2) toendaCMS 1.0.0 Shizouka Stable and previous versions, (3) WeBid 0.5.4, and possibly other products, when install...
Geeklog Geeklog 1.4.0 Sr3
Toenda Software Development Toendacms 0.6.1
Geeklog Geeklog 1.4.0 Sr1
Geeklog Geeklog 1.4.0 Sr2
Geeklog Geeklog 1.4.0
Toenda Software Development Toendacms 1.0
Toenda Software Development Toendacms 0.6.2
Toenda Software Development Toendacms 0.7
1 EDB exploit
5
CVSSv2
CVE-2005-4319
Directory traversal vulnerability in index2.php in Limbo CMS 1.0.4.2 and previous versions allows remote malicious users to include arbitrary PHP files via ".." sequences in the option parameter.
Limbo Cms Limbo Cms
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »