CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7195 matches found

Tenable Nessus•added 2006/06/03 12:0 a.m.•57 views

SquirrelMail plugin.php plugins Parameter Local File Inclusion

The version of SquirrelMail installed on the remote web server fails to properly sanitize user-supplied input to the 'plugins' parameter of the 'functions/plugin.php' script before using it in a PHP 'includeonce' function. Provided PHP's 'registerglobals' setting is enabled, an unauthenticated...

7.5CVSS6.2AI score0.0164EPSS

Exploits2References3

exploitpack•added 2006/06/03 12:0 a.m.•12 views

dotWidget for articles 2.0 - adminauthors.php Multiple Remote File Inclusions

dotWidget for articles 2.0 - adminauthors.php Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-suppli...

exploitpack•added 2006/06/03 12:0 a.m.•14 views

dotWidget for articles 2.0 - admincategories.php Multiple Remote File Inclusions

dotWidget for articles 2.0 - admincategories.php Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize...

Exploit DB•added 2006/06/03 12:0 a.m.•27 views

dotWidget for articles 2.0 - '/admin/index.php' Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote fil...

Exploit DB•added 2006/06/03 12:0 a.m.•17 views

dotWidget for articles 2.0 - '/admin/authors.php' Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote fil...

Exploit DB•added 2006/06/03 12:0 a.m.•22 views

dotWidget for articles 2.0 - 'showcatpicks.php?file_path' Remote File Inclusion

source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote fil...

Prion•added 2006/06/02 10:18 a.m.•6 views

Remote file inclusion

PHP remote file inclusion vulnerability in METAjour 2.1, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via the 1 systempath parameter in a large number of files in the a app/edocument/, b app/eproject/, c app/erek/, and d extension/ directories, and the 2...

5.1CVSS8.1AI score0.04759EPSS

Exploits1References5Affected Software1

CVE•added 2006/06/02 10:0 a.m.•44 views

CVE-2006-2768

METAjour 2.1 contains a PHP remote file inclusion vulnerability exploitable when register_globals is enabled. An attacker can execute arbitrary PHP code via (1) the system_path parameter in files under app/edocument/, app/eproject/, app/erek/, and extension/ directories, and (2) the GLOBALS[syste...

5.1CVSS7.6AI score0.04759EPSS

Exploits1References5Affected Software1

Prion•added 2006/06/02 1:2 a.m.•12 views

Remote file inclusion

PHP remote file inclusion vulnerability in includes/config.php in WebCalendar 1.0.3 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter, which is remotely accessed in an fopen call whose results are used to define a userinc setting that is used in an...

6.4CVSS7.6AI score0.0103EPSS

Exploits0References10Affected Software1

Cvelist•added 2006/06/02 1:0 a.m.•15 views

CVE-2006-2762

PHP remote file inclusion vulnerability in includes/config.php in WebCalendar 1.0.3 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter, which is remotely accessed in an fopen call whose results are used to define a userinc setting that is used in an...

7.2AI score0.0103EPSS

Exploits0References10

exploitpack•added 2006/06/02 12:0 a.m.•19 views

Ovidentia 5.6.x5.8 - approb.php?babInstallPath Remote File Inclusion

Ovidentia 5.6.x5.8 - approb.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues...

Exploit DB•added 2006/06/02 12:0 a.m.•29 views

Ovidentia 5.6.x/5.8 - 'approb.php?babInstallPath' Remote File Inclusion

source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...

exploitpack•added 2006/06/02 12:0 a.m.•12 views

MyBloggie 2.1.x - MyBloggie_Root_Path Remote File Inclusion

MyBloggie 2.1.x - MyBloggieRootPath Remote File Inclusion source: https://www.securityfocus.com/bid/19449/info MyBloggie is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary...

exploitpack•added 2006/06/02 12:0 a.m.•19 views

Ovidentia 5.6.x5.8 - statart.php?babInstallPath Remote File Inclusion

Ovidentia 5.6.x5.8 - statart.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issue...

exploitpack•added 2006/06/02 12:0 a.m.•10 views

phpBB 2.0.x - template.php Remote File Inclusion

phpBB 2.0.x - template.php Remote File Inclusion source: https://www.securityfocus.com/bid/18255/info The phpBB application is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this iss...

Exploit DB•added 2006/06/02 12:0 a.m.•19 views

MyBloggie 2.1.x - 'MyBloggie_Root_Path' Remote File Inclusion

source: https://www.securityfocus.com/bid/19449/info MyBloggie is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and execute it in...

exploitpack•added 2006/06/02 12:0 a.m.•8 views

Ovidentia 5.6.x5.8 - vacadma.php?babInstallPath Remote File Inclusion

Ovidentia 5.6.x5.8 - vacadma.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issue...

Exploit DB•added 2006/06/02 12:0 a.m.•51 views

Ovidentia 5.6.x/5.8 - 'vacadma.php?babInstallPath' Remote File Inclusion

source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...

Exploit DB•added 2006/06/02 12:0 a.m.•39 views

Ovidentia 5.6.x/5.8 - 'vacadmb.php?babInstallPath' Remote File Inclusion

source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...

Exploit DB•added 2006/06/02 12:0 a.m.•29 views

Ovidentia 5.6.x/5.8 - 'statart.php?babInstallPath' Remote File Inclusion

source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by