Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sirgod vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-2152
SQL injection vulnerability in a_index.php in AdaptWeb 0.9.2 allows remote malicious users to execute arbitrary SQL commands via the CodigoDisciplina parameter in a TopicosCadastro1 action.
Isabela Gasparini Adaptweb 0.9.2
1 EDB exploit
4.3
CVSSv2
CVE-2009-2153
Cross-site scripting (XSS) vulnerability in index.php in Impleo Music Collection 2.0 allows remote malicious users to inject arbitrary web script or HTML via the sort parameter.
Sappy.dk Impleo Music Collection 2.0
1 EDB exploit
6.8
CVSSv2
CVE-2009-2154
SQL injection vulnerability in admin/login.php in Impleo Music Collection 2.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Sappy.dk Impleo Music Collection 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-2263
Directory traversal vulnerability in index.php in Awesome PHP Mega File Manager 1.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by ...
Awesomephp Mega File Manager 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2008-3923
Multiple cross-site scripting (XSS) vulnerabilities in statistics.php in Content Management Made Easy (CMME) 1.12 allow remote malicious users to inject arbitrary web script or HTML via the (1) page and (2) year parameters in an hstat_year action.
Hans Oesterholt Cmme 1.12
1 EDB exploit
6.8
CVSSv2
CVE-2008-4075
Directory traversal vulnerability in index.php in D-iscussion Board 3.01 allows remote malicious users to read arbitrary files via a .. (dot dot) in the topic parameter.
Dino D-iscussion Board 3.01
1 EDB exploit
7.8
CVSSv2
CVE-2008-4155
Multiple directory traversal vulnerabilities in EasySite 2.3 allow remote malicious users to read arbitrary files or list directories via a .. (dot dot) in the (1) module or (2) action parameter in (a) www/index.php; the (3) module, (4) ss_module, or (5) ss_action parameter in (b...
Easybrik Easysite 2.3
1 EDB exploit
7.5
CVSSv2
CVE-2009-3158
admin/files.php in simplePHPWeb 0.2 does not require authentication, which allows remote malicious users to perform unspecified administrative actions via unknown vectors. NOTE: some of these details are obtained from third party information.
Carsten Wulff Simplephpweb 0.2
1 EDB exploit
4.3
CVSSv2
CVE-2009-3216
Multiple directory traversal vulnerabilities in iWiccle 1.01, when magic_quotes_gpc is disabled, allow remote malicious users to read arbitrary files via a .. (dot dot) in (1) the show parameter to the admin module, reachable through index.php; or (2) the module parameter to inde...
Wiccle Iwiccle 1.01
1 EDB exploit
7.5
CVSSv2
CVE-2009-4723
Directory traversal vulnerability in confirm.php in Netpet CMS 1.9 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Netpet Netpet Cms 1.9
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-3611
CVE-2024-4947
CVE-2024-32988
CVE-2020-35165
local file inclusion
CVE-2024-4980
bypass
malicious code
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »