Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
staker vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2009-1936
_functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote malicious users to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PH...
Cpcommerce Project Cpcommerce
1 EDB exploit
NA
CVE-2008-3031
Directory traversal vulnerability in index.php in Simple PHP Agenda 2.2.4 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Simple Php Agenda Simple Php Agenda 2.2.0
Simple Php Agenda Simple Php Agenda 2.2.1
Simple Php Agenda Simple Php Agenda 2.0.0
Simple Php Agenda Simple Php Agenda 2.1.0
Simple Php Agenda Simple Php Agenda 2.2.2
Simple Php Agenda Simple Php Agenda 2.2.3
Simple Php Agenda Simple Php Agenda
1 EDB exploit
NA
CVE-2008-4524
SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Adaptcms Adaptcms 1.3
1 EDB exploit
NA
CVE-2008-5322
Wysi Wiki Wyg 1.0 allows remote malicious users to obtain system information via an invalid categup parameter to index.php, which calls the phpinfo function.
Easy-script Wysi Wiki Wyg 1.0
1 EDB exploit
NA
CVE-2009-0592
Multiple directory traversal vulnerabilities in PNphpBB2 1.2i and previous versions allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the ModName parameter to (1) admin_words.php, (2) admin_groups_reapir.php, (3) admin_smilies.php, (4...
Pnphpbb Pnphpbb2 1.2h
Pnphpbb Pnphpbb2 1.1a
Pnphpbb Pnphpbb2 1.1
Pnphpbb Pnphpbb2 1.2e
Pnphpbb Pnphpbb2 1.2d
Pnphpbb Pnphpbb2 1.2a
Pnphpbb Pnphpbb2 1.2
Pnphpbb Pnphpbb2 1.2g
Pnphpbb Pnphpbb2 1.2f
Pnphpbb Pnphpbb2 1.0
Pnphpbb Pnphpbb2
1 EDB exploit
NA
CVE-2006-0123
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote malicious users to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.
Adn Forum Adn Forum 1.0
Adn Forum Adn Forum 1.0b
1 EDB exploit
NA
CVE-2008-5418
Directory traversal vulnerability in login.php in the PunPortal module prior to 2.0 for PunBB allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the pun_user[language] parameter.
Justin Roy Punportal Module 1.0
1 EDB exploit
NA
CVE-2008-5491
SQL injection vulnerability in edit.php in SlimCMS 1.0.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the pageID parameter.
Slimcms Slimcms
1 EDB exploit
NA
CVE-2008-5708
redirect.php in SlimCMS 1.0.0 does not require authentication, which allows remote malicious users to create administrative users by using the newusername and newpassword parameters and setting the newisadmin parameter to 1.
Slimcms Slimcms 1.0.0
1 EDB exploit
NA
CVE-2008-5737
SQL injection vulnerability in index.php in Nodstrum MySQL Calendar 1.1 and 1.2 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Nodstrum Mysql Calendar 1.2
Nodstrum Mysql Calendar 1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »