Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2006-4859
Unrestricted file upload vulnerability in contact.html.php in the Contact (com_contact) component in Limbo (aka Lite Mambo) CMS 1.0.4.2L and previous versions allows remote malicious users to upload PHP code to the images/contact folder via a filename with a double extension in t...
Limbo Cms Limbo Cms 1.0.4.1
Limbo Cms Limbo Cms 1.0.4.2
Limbo Cms Limbo Cms 1.0.4.2l
1 EDB exploit
755
VMScore
CVE-2005-2885
The Downloads page in MAXdev MD-Pro 1.0.73, and possibly earlier versions, uses an incomplete blacklist to check for dangerous file extensions, which could allow remote malicious users to bypass file extension checks and execute arbitrary commands by uploading a file with a diffe...
Maxdev Md-pro 1.0.73
1 EDB exploit
755
VMScore
CVE-2005-3045
SQL injection vulnerability in search.php in My Little Forum 1.5 and 1.6 beta allows remote malicious users to execute arbitrary SQL commands via the phrase field.
My Little Homepage My Little Forum 1.3
My Little Homepage My Little Forum 1.5
1 EDB exploit
755
VMScore
CVE-2005-3063
SQL injection vulnerability in MailGust 1.9 allows remote malicious users to execute arbitrary SQL commands via the email field on the password reminder page.
Unu Networks Mailgust 1.9
1 EDB exploit
755
VMScore
CVE-2005-3130
SQL injection vulnerability in lucidCMS 1.0.11 allows remote malicious users to execute arbitrary SQL commands via the login field.
Lucidcms Lucidcms 1.0.11
1 EDB exploit
1000
VMScore
CVE-2007-2853
The VCDAPILibApi ActiveX control in vc9api.DLL 9.0.0.57 in Virtual CD 9.0.0.2 allows remote malicious users to execute arbitrary commands via a command line in the first argument to the VCDLaunchAndWait function.
H\\+h Vcdapilibapi Activex Control 9.0.0.57
H\\+h Virtual Cd 9.0.0.2
1 EDB exploit
755
VMScore
CVE-2006-3531
includes/editor/insert_image.php in Pivot 1.30 RC2 and previous versions creates the authentication credentials from parameters, which allows remote malicious users to obtain privileges and upload arbitrary files via modified (1) pass and (2) session parameters, and (3) pass and ...
Pivot Pivot
1 EDB exploit
515
VMScore
CVE-2006-3532
PHP file inclusion vulnerability in includes/edit_new.php in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a FTP URL or full file path in the Paths[extensions_path] parameter.
Pivot Pivot 1.30 Rc2
1 EDB exploit
755
VMScore
CVE-2006-3572
SQL injection vulnerability in forumthread.php in Papoo 3 RC3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the msgid parameter.
Papoo Papoo 2.1.2
Papoo Papoo 2.1.4
Papoo Papoo 2.1.5
Papoo Papoo 3.0.0
Papoo Papoo 3.0.0 Beta1
Papoo Papoo
1 EDB exploit
655
VMScore
CVE-2006-3996
SQL injection vulnerability in links/index.php in ATutor 1.5.3.1 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the (1) desc or (2) asc parameters.
Adaptive Technology Resource Centre Atutor
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »