Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-7070
Unrestricted file upload vulnerability in manager/media/ibrowser/scripts/rfiles.php in Etomite CMS 0.6.1 and previous versions allows remote malicious users to upload and execute arbitrary files via an nfile[] parameter with a filename that contains a .php extension followed by a...
Etomite Etomite
Etomite Etomite 0.6
1 EDB exploit
9.8
CVSSv3
CVE-2006-7079
Variable extraction vulnerability in include/common.php in exV2 2.0.4.3 and previous versions allows remote malicious users to overwrite arbitrary program variables and conduct directory traversal attacks to execute arbitrary code by modifying the $xoopsOption['pagetype'...
Exv2 Content Management System
1 EDB exploit
NA
CVE-2006-7080
Directory traversal vulnerability in the avatar upload feature in exV2 2.0.4.3 and previous versions allows remote malicious users to delete arbitrary files via ".." sequences in the old_avatar parameter.
Exv2 Content Management System
1 EDB exploit
NA
CVE-2006-7173
Direct static code injection vulnerability in admin.php in PHP-Stats 0.1.9.1b and previous versions allows remote malicious users to execute arbitrary PHP code via a crafted option_new[report_w_day] parameter in a preferenze action, which can be later accessed via option/php-stat...
Php-stats Php-stats
1 EDB exploit
NA
CVE-2006-7247
SQL injection vulnerability in the Weblinks (com_weblinks) component for Joomla! and Mambo 1.0.9 and previous versions allows remote malicious users to execute arbitrary SQL commands via the title parameter.
Joomla Com Weblinks
1 EDB exploit
NA
CVE-2006-0565
PHP remote file include vulnerability in inc/backend_settings.php in Loudblog 0.4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the $GLOBALS[path] parameter.
Gerrit Van Aaken Loudblog 0.1
Gerrit Van Aaken Loudblog 0.2
Gerrit Van Aaken Loudblog 0.3
Gerrit Van Aaken Loudblog
1 EDB exploit
NA
CVE-2006-0583
SQL injection vulnerability in mailarticle.php in Clever Copy 3.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Clever Copy Clever Copy 1.0.0
Clever Copy Clever Copy 1.0.1
Clever Copy Clever Copy 1.0.2
Clever Copy Clever Copy 1.0.3
Clever Copy Clever Copy 2.0
Clever Copy Clever Copy 2.0a
Clever Copy Clever Copy 3.0
1 EDB exploit
NA
CVE-2006-0626
SQL injection vulnerability in spip_acces_doc.php3 in SPIP 1.8.2g and previous versions allows remote malicious users to execute arbitrary SQL commands via the file parameter.
Spip Spip 1.8.2g
1 EDB exploit
NA
CVE-2006-0644
Multiple directory traversal vulnerabilities in install.php in CPG-Nuke Dragonfly CMS (aka CPG Dragonfly CMS) 9.0.6.1 allow remote malicious users to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in (1) the newlang parameter...
Cpg-nuke Dragonfly Cms 9.0.6 .1
1 EDB exploit
NA
CVE-2006-0852
Direct static code injection vulnerability in write.php in Admbook 1.2.2 and previous versions allows remote malicious users to execute arbitrary PHP code via the X-Forwarded-For HTTP header field, which is inserted into content-data.php.
Devscripts Admbook
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »