Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3531
includes/editor/insert_image.php in Pivot 1.30 RC2 and previous versions creates the authentication credentials from parameters, which allows remote malicious users to obtain privileges and upload arbitrary files via modified (1) pass and (2) session parameters, and (3) pass and ...
Pivot Pivot
1 EDB exploit
NA
CVE-2006-3532
PHP file inclusion vulnerability in includes/edit_new.php in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a FTP URL or full file path in the Paths[extensions_path] parameter.
Pivot Pivot 1.30 Rc2
1 EDB exploit
NA
CVE-2006-3533
Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) fg, (2) line1, (3) line2, (4) bg, (5) c1, (6) c2, (7) c3, and (8) c4 para...
Pivot Pivot 1.30 Rc2
1 EDB exploit
NA
CVE-2007-0639
Multiple static code injection vulnerabilities in error.php in GuppY 4.5.16 and previous versions allow remote malicious users to inject arbitrary PHP code into a .inc file in the data/ directory via (1) a REMOTE_ADDR cookie or (2) a cookie specifying an element of the msg array ...
Guppy Guppy
1 EDB exploit
NA
CVE-2012-5930
The pa_modify_accounts function in auth.dll in unifid.exe in NetIQ Privileged User Manager 2.3.x prior to 2.3.1 HF2 does not require authentication for the modifyAccounts method, which allows remote malicious users to change the passwords of administrative accounts via a crafted ...
Microfocus Privileged User Manager 2.3.0
Microfocus Privileged User Manager 2.3.1
1 EDB exploit
NA
CVE-2005-4319
Directory traversal vulnerability in index2.php in Limbo CMS 1.0.4.2 and previous versions allows remote malicious users to include arbitrary PHP files via ".." sequences in the option parameter.
Limbo Cms Limbo Cms
1 EDB exploit
NA
CVE-2005-4467
Directory traversal vulnerability in help_text_vars.php in PHPGedView 3.3.7 and previous versions allows remote malicious users to read and include arbitrary files via a .. (dot dot) in the PGV_BASE_DIRECTORY parameter.
Phpgedview Phpgedview 2.61.1
Phpgedview Phpgedview 2.65
Phpgedview Phpgedview 2.65.1
Phpgedview Phpgedview 2.65.2
Phpgedview Phpgedview 2.60
Phpgedview Phpgedview 2.61
Phpgedview Phpgedview 2.52.3
Phpgedview Phpgedview 2.65 Beta5
Phpgedview Phpgedview 3.3.7
1 EDB exploit
NA
CVE-2005-4593
PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary code via a URL in the (1) FORUM[LIB] parameter in Documentation/tests/bug-559668.php and (2) the root_dir...
Joshua Eichorn Phpdocumentor 1.2.3
Joshua Eichorn Phpdocumentor 1.3 Rc3
Joshua Eichorn Phpdocumentor 1.3 Rc4
Joshua Eichorn Phpdocumentor 1.2
Joshua Eichorn Phpdocumentor 1.2.1
Joshua Eichorn Phpdocumentor 1.2.2
1 EDB exploit
NA
CVE-2006-0626
SQL injection vulnerability in spip_acces_doc.php3 in SPIP 1.8.2g and previous versions allows remote malicious users to execute arbitrary SQL commands via the file parameter.
Spip Spip 1.8.2g
1 EDB exploit
NA
CVE-2006-0899
Directory traversal vulnerability in index.php in 4Images 1.7.1 and previous versions allows remote malicious users to read and include arbitrary files via ".." (dot dot) sequences in the template parameter.
4images Image Gallery Management System
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »