Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
y3dips vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3353
Opera 9 allows remote malicious users to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties.
Opera Opera Browser
1 EDB exploit
NA
CVE-2007-0497
PHP remote file inclusion vulnerability in upload/top.php in Upload-Service 1.0, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the maindir parameter.
Upload-service Upload-service 1.0
1 EDB exploit
NA
CVE-2007-0677
PHP remote file inclusion vulnerability in fw/class.Quick_Config_Browser.php in Cadre PHP Framework 20020724 allows remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[config][framework_path] parameter.
Cronosys Cadre Php Framework 22020724
1 EDB exploit
NA
CVE-2005-0691
PHP remote file inclusion vulnerability in article mode for modules.php in SocialMPN allows remote malicious users to execute arbitrary PHP code by modifying the name parameter to reference a URL on a remote web server that contains the code.
Socialmpn Socialmpn 1.2.3
Socialmpn Socialmpn 1.2.4
Socialmpn Socialmpn 1.2.5
Socialmpn Socialmpn 1.2.1
Socialmpn Socialmpn 1.2.2
1 EDB exploit
NA
CVE-2007-0881
PHP remote file inclusion vulnerability in the Seitenschutz plugin for OPENi-CMS 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the (1) config[oi_dir] and possibly (2) config[openi_dir] parameters to open-admin/plugins/site_protection/index.php. NOTE...
Openi-cms Group Openi-cms 1.0
1 EDB exploit
NA
CVE-2005-0780
paFileDB 3.1 and previous versions allows remote malicious users to obtain sensitive information via a direct request to (1) auth.php, (2) login.php, (3) category.php, (4) file.php, (5) team.php, (6) license.php, (7) custom.php, (8) admins.php, or (9) backupdb.php, which reveal t...
Php Arena Pafiledb 3.0 Beta 3.1
Php Arena Pafiledb 3.1
Php Arena Pafiledb 2.1.1
Php Arena Pafiledb 3.0
Php Arena Pafiledb 1.1.3
1 EDB exploit
NA
CVE-2005-1135
Cross-site scripting (XSS) vulnerability in search.php for Simple PHP Blog (sphpBlog) 0.4.0 allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Alexander Palmo Simple Php Blog 0.4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started