CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-1774

Malware in sbrugna...

7.5CVSS6.4AI score0.0369EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-1776

Malware in sbrugna...

7.5CVSS6.4AI score0.03691EPSS

Exploits1References4

Prion•added 2009/05/22 8:30 p.m.•8 views

Remote file inclusion

PHP remote file inclusion vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the formincludetemplate parameter...

7.5CVSS8.1AI score0.0369EPSS

Exploits1References3Affected Software1

Prion•added 2009/05/22 8:30 p.m.•7 views

Authentication flaw

admin.php in Frax.dk Php Recommend 1.3 and earlier does not require authentication when the user password is changed, which allows remote attackers to gain administrative privileges via modified formadminuser and formadminpass parameters...

7.5CVSS7.9AI score0.04014EPSS

Exploits1References3Affected Software1

Prion•added 2009/05/22 8:30 p.m.•8 views

Code injection

Static code injection vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to inject arbitrary PHP code into phpreconfig.php via the formaula parameter...

7.5CVSS7.8AI score0.03691EPSS

Exploits1References3Affected Software1

NVD•added 2009/05/22 8:30 p.m.•9 views

CVE-2009-1779

PHP remote file inclusion vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the formincludetemplate parameter...

7.5CVSS7.6AI score0.0369EPSS

Exploits1References3

NVD•added 2009/05/22 8:30 p.m.•8 views

CVE-2009-1780

7.5CVSS7.3AI score0.04014EPSS

Exploits1References3

NVD•added 2009/05/22 8:30 p.m.•9 views

CVE-2009-1781

Static code injection vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to inject arbitrary PHP code into phpreconfig.php via the formaula parameter...

7.5CVSS7.3AI score0.03691EPSS

Exploits1References3

CVE•added 2009/05/22 8:0 p.m.•38 views

CVE-2009-1780

CVE-2009-1780 affects Frax.dk Php Recommend 1.3 and earlier. The issue is in the password-change flow where authentication is not required, enabling remote attackers to gain administrative privileges by submitting manipulated form_admin_user and form_admin_pass parameters. The core impact is unau...

7.5CVSS7.6AI score0.04014EPSS

Exploits1References3Affected Software1

Cvelist•added 2009/05/22 8:0 p.m.•14 views

CVE-2009-1781

Static code injection vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to inject arbitrary PHP code into phpreconfig.php via the formaula parameter...

7.3AI score0.03691EPSS

Exploits1References3

Cvelist•added 2009/05/22 8:0 p.m.•17 views

CVE-2009-1779

PHP remote file inclusion vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the formincludetemplate parameter...

7.6AI score0.0369EPSS

Exploits1References3

CVE•added 2009/05/22 8:0 p.m.•38 views

CVE-2009-1781

CVE-2009-1781 describes a static code injection vulnerability in admin.php of Frax.dk Php Recommend 1.3 and earlier. The issue allows remote attackers to inject arbitrary PHP code into phpre_config.php through the form_aula parameter, indicating a file/configuration handling flaw in older version...

7.5CVSS7.5AI score0.03691EPSS

Exploits1References3Affected Software1

CVE•added 2009/05/22 8:0 p.m.•34 views

CVE-2009-1779

The CVE-2009-1779 issue affects Frax.dk Php Recommend 1.3 and earlier versions, where a remote file inclusion flaw in admin.php allows an attacker to execute arbitrary PHP code via a URL parameter named form_include_template. This is exploitable by remote attackers without authentication and resu...

7.5CVSS7.8AI score0.0369EPSS

Exploits1References3Affected Software1

Cvelist•added 2009/05/22 8:0 p.m.•16 views

CVE-2009-1780

7.3AI score0.04014EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by