Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shikaa vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-5068
PHP remote file inclusion vulnerability in admin/index.php in Brudaswen (1) BrudaNews 1.1 and previous versions and (2) BrudaGB 1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the o parameter.
Brudaswen Brudanews
2 EDB exploits
5.1
CVSSv2
CVE-2006-5070
PHP remote file inclusion vulnerability in fsl2/objects/fs_form_links.php in faceStones Personal 2.0.42 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[fsinit][objpath] parameter.
Facestones Facestones
1 EDB exploit
7.5
CVSSv2
CVE-2006-5087
Multiple PHP remote file inclusion vulnerabilities in evoBB 0.3 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the path parameter in (1) track.php or (2) connect.php.
Evobb Evobb
1 EDB exploit
7.5
CVSSv2
CVE-2006-5493
PHP remote file inclusion vulnerability in template/purpletech/base_include.php in DigitalHive 2.0 RC2 allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Digitalhive Digitalhive 2.0 Rc2
1 EDB exploit
7.5
CVSSv2
CVE-2006-5383
SQL injection vulnerability in comadd.php in Def-Blog 1.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the article parameter.
Def-blog Def-blog 1.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-4440
PHP remote file inclusion vulnerability in main.php in Ay System Solutions CMS 2.6 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter.
Ay System Solutions Ay System Solutions Cms
1 EDB exploit
5.1
CVSSv2
CVE-2006-4488
PHP remote file inclusion vulnerability in modules/userstop/userstop.php in ExBB Italia 0.2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the exbb[home_path] parameter.
Exbb Exbb Italia
1 EDB exploit
7.5
CVSSv2
CVE-2006-4647
PHP remote file inclusion vulnerability in news.php in Sponge News 2.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the sndir parameter.
Sponge News Sponge News
1 EDB exploit
7.5
CVSSv2
CVE-2006-4441
Multiple PHP remote file inclusion vulnerabilities in Ay System Solutions CMS 2.6 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter to (1) home.php or (2) impressum.php. NOTE: the provenance of this...
Ay System Solutions Ay System Solutions Cms
1 EDB exploit
7.5
CVSSv2
CVE-2006-4452
PHP remote file inclusion vulnerability in security/include/_class.security.php in Web3news 0.95 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the PHPSECURITYADMIN_PATH parameter.
Web3king Web3news
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »