Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2006-1828
SQL injection vulnerability in php121language.php in PHP121 1.4 allows remote malicious users to execute arbitrary SQL commands and execute arbitrary code via the sess_username variable, as set by the php121un HTTP COOKIE parameter, which is used in multiple files including php12...
Php121 Php121 Instant Messenger
1 EDB exploit
7.5
CVSSv2
CVE-2006-1831
Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other versions prior to 2.25 allows remote malicious users to execute arbitrary commands via a leading ; (semicolon) in the name parameter in a systemdoc action, which is injected into phpinfo....
Coder-world Sysinfo 1.21
1 EDB exploit
5
CVSSv2
CVE-2006-1832
sysinfo.cgi in sysinfo 1.21 allows remote malicious users to obtain the installation path via the debugger action.
Coder-world Sysinfo 1.21
1 EDB exploit
7.5
CVSSv2
CVE-2006-1839
PHP remote file inclusion vulnerability in language.php in PHP Album 0.3.2.3, when register_globals is enabled, allows remote malicious users to execute arbitrary code via an FTP URL in the data_dir parameter, which satisfies the file_exists function call.
Php Album Php Album 0.3.2.3
1 EDB exploit
6.4
CVSSv2
CVE-2007-5219
Directory traversal vulnerability in the CLAVSetting.CLSetting.1 ActiveX control in CLAVSetting.DLL 1.00.1829 in the CLAVSetting module in CyberLink PowerDVD 7.0 allows remote malicious users to create or overwrite arbitrary files via a .. (dot dot) in the argument to the CreateN...
Cyberlink Powerdvd 7.0
1 EDB exploit
10
CVSSv2
CVE-2006-7173
Direct static code injection vulnerability in admin.php in PHP-Stats 0.1.9.1b and previous versions allows remote malicious users to execute arbitrary PHP code via a crafted option_new[report_w_day] parameter in a preferenze action, which can be later accessed via option/php-stat...
Php-stats Php-stats
1 EDB exploit
10
CVSSv2
CVE-2007-0261
snews.php in sNews 1.5.30 and previous versions does not properly exit when authentication fails, which allows remote malicious users to perform unauthorized administrative actions, as demonstrated by changing an administrative password via the changeup task, and by uploading PHP...
Snews Snews 1.5.29
Snews Snews 1.5.30
1 EDB exploit
7.5
CVSSv2
CVE-2007-0340
SQL injection vulnerability in inc/header.inc.php in ThWboard 3.0b2.84-php5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the board[styleid] parameter to index.php.
Thwboard Thwboard
1 EDB exploit
7.6
CVSSv2
CVE-2007-3536
Multiple buffer overflows in the AMX NetLinx VNC (AmxVnc) ActiveX control in AmxVnc.dll 1.0.13.0 allow remote malicious users to execute arbitrary code via long (1) Host, (2) Password, or (3) LogFile property values.
Amx Netlinx Vnc Activex Control 1.0.13.0
1 EDB exploit
9.3
CVSSv2
CVE-2012-5897
The (1) SimpleTree and (2) ReportTree classes in the ARDoc ActiveX control (ARDoc.dll) in Quest InTrust 10.4.0.853 and previous versions do not properly implement the SaveToFile method, which allows remote malicious users to write or overwrite arbitrary files via the bstrFileName...
Quest Intrust 10.1
Quest Intrust
Quest Intrust 10.4
Quest Intrust 10.3
Quest Intrust 10.2.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »