Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shikaa vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-5068
PHP remote file inclusion vulnerability in admin/index.php in Brudaswen (1) BrudaNews 1.1 and previous versions and (2) BrudaGB 1.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the o parameter.
Brudaswen Brudanews
2 EDB exploits
7.5
CVSSv2
CVE-2006-4890
Multiple PHP remote file inclusion vulnerabilities in UNAK-CMS 1.5 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the dirroot parameter to (1) fckeditor/editor/filemanager/browser/default/connectors/php/connector.php or (2) fckeditor...
Unak Unak Cms 1.5
Unak Unak Cms 1.5 Rc1
1 EDB exploit
7.5
CVSSv2
CVE-2006-4898
PHP remote file inclusion vulnerability in include/phpxd/phpXD.php in guanxiCRM 0.9.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the appconf[rootpath] parameter.
Guanxicrm Guanxicrm Business Solution 0.9.1
1 EDB exploit
5.1
CVSSv2
CVE-2006-5070
PHP remote file inclusion vulnerability in fsl2/objects/fs_form_links.php in faceStones Personal 2.0.42 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[fsinit][objpath] parameter.
Facestones Facestones
1 EDB exploit
5.1
CVSSv2
CVE-2006-3987
Multiple PHP remote file inclusion vulnerabilities in index.php in Knusperleicht FileManager 1.2 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the (1) dwl_download_path or (2) dwl_include_path parameters.
Knusperleicht Knusperleicht Filemanager
1 EDB exploit
7.5
CVSSv2
CVE-2006-4441
Multiple PHP remote file inclusion vulnerabilities in Ay System Solutions CMS 2.6 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter to (1) home.php or (2) impressum.php. NOTE: the provenance of this...
Ay System Solutions Ay System Solutions Cms
1 EDB exploit
7.5
CVSSv2
CVE-2006-4629
PHP remote file inclusion vulnerability in affichage/commentaires.php in C-News.fr C-News 1.0.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the path parameter.
C-news.fr C-news
1 EDB exploit
7.5
CVSSv2
CVE-2006-4045
PHP remote file inclusion vulnerability in news.php in Torbstoff News 4 allows remote malicious users to execute arbitrary PHP code via a URL in the pfad parameter.
Torbstoff Torbstoff News 4
1 EDB exploit
5.1
CVSSv2
CVE-2006-4788
PHP remote file inclusion vulnerability in includes/log.inc.php in Telekorn SignKorn Guestbook (SL) 1.3 and previous versions, when register_globals is enabled and _SESSION[permission] parameter is set to "yes", allows remote malicious users to execute arbitrary PHP cod...
Telekorn Signkorn Guestbook
Telekorn Signkorn Guestbook 1.1
Telekorn Signkorn Guestbook 1.2
1 EDB exploit
5.1
CVSSv2
CVE-2006-3685
PHP remote file inclusion vulnerability in CzarNews 1.12 up to and including 1.14 allows remote malicious users to execute arbitrary PHP code via a URL in the tpath parameter to cn_config.php. NOTE: the news.php vector is already covered by CVE-2005-0859.
Czaries Network Czarnews 1.12
Czaries Network Czarnews 1.13
Czaries Network Czarnews 1.14
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »