Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
v1per-hacker vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-6612
PHP remote file inclusion vulnerability in basic.inc.php in PhpMyCms 0.3 allows remote malicious users to execute arbitrary PHP code via a URL in the basepath_start parameter.
Phpmycms Phpmycms 0.3
1 EDB exploit
7.5
CVSSv2
CVE-2006-5621
PHP remote file inclusion vulnerability in end.php in ask_rave 0.9 PR, and other versions prior to 0.9b, allows remote malicious users to execute arbitrary PHP code via a URL in the footfile parameter.
Ask Rave Ask Rave
1 EDB exploit
7.5
CVSSv2
CVE-2006-5624
Multiple PHP remote file inclusion vulnerabilities in Multi-Page Comment System (MPCS) 1.0.0 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the path parameter to (1) include.php or (2) functions.php. NOTE: the provenance of this info...
Mpcs Mpcs 0.5.0
Mpcs Mpcs
1 EDB exploit
6.8
CVSSv2
CVE-2006-5634
Multiple PHP remote file inclusion vulnerabilities in phpProfiles 2.1 Beta allow remote malicious users to execute arbitrary PHP code via a URL in the (1) reqpath parameter to (a) body.inc.php and (b) body_blog.inc.php in users/include/; or the (2) usrinc parameter in users/inclu...
Phpprofiles Phpprofiles
1 EDB exploit
7.5
CVSSv2
CVE-2006-5923
PHP remote file inclusion vulnerability in index.php in Chris Mac gtcatalog (aka GimeScripts Shopping Catalog) 0.9.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the custom parameter.
Chris Mac Gimescripts Shopping Catalog
1 EDB exploit
7.5
CVSSv2
CVE-2006-5126
PHP remote file inclusion vulnerability in index.php in John Himmelman (aka DaRk2k1) PowerPortal 1.3a allows remote malicious users to execute arbitrary PHP code via a URL in the file_name[] parameter.
Powerportal Powerportal 1.3a
1 EDB exploit
7.5
CVSSv2
CVE-2006-5135
Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) open_box, (2) middle_box, and (3) close_box parameters in (a) sources/myaccount.php; the (4) navigation_end parameter in (b) navigation/s...
A-blog A-blog 2
1 EDB exploit
7.5
CVSSv2
CVE-2006-5637
PHP remote file inclusion vulnerability in faq_reply.php in Faq Administrator 2.1b allows remote malicious users to execute arbitrary PHP code via a URL in the email parameter.
Faq Administrator Faq Administrator 2.1b
1 EDB exploit
7.5
CVSSv2
CVE-2006-5893
Multiple PHP remote file inclusion vulnerabilities in iWonder Designs Storystream 0.4.0.0 allow remote malicious users to execute arbitrary PHP code via a URL in the baseDir parameter to (1) mysql.php and (2) mysqli.php in include/classes/pear/DB/.
Iwonder Designs Storystream 0.4.0.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-5282
Multiple PHP remote file inclusion vulnerabilities in SH-News 3.1 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the scriptpath parameter to (1) report.php, (2) archive.php, (3) comments.php, (4) init.php, or (5) news.php.
Sh-news Sh-news
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »