CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-1775

Malware in sbrugna...

7.5CVSS6.4AI score0.04014EPSS

Exploits1References4

seebug.org•added 2014/07/01 12:0 a.m.•13 views

php recommend <= 1.3 (ab/rfi/ci) Multiple Vulnerabilities

No description provided by source. Php Recommend =1.3 Authentication Bypass/Remote File Include/Code Injection Exploits Author: scriptjunkie scriptjunkie.1 nospam googlemail nospam com Condition: RFI: allowurlfopen = On code injection: magicquotesgpc = Off Exploits: Authentication Bypass: change...

7.1AI score

Exploits0

Prion•added 2009/05/22 8:30 p.m.•8 views

Code injection

Static code injection vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to inject arbitrary PHP code into phpreconfig.php via the formaula parameter...

7.5CVSS7.8AI score0.03691EPSS

Exploits1References3Affected Software1

NVD•added 2009/05/22 8:30 p.m.•8 views

CVE-2009-1780

admin.php in Frax.dk Php Recommend 1.3 and earlier does not require authentication when the user password is changed, which allows remote attackers to gain administrative privileges via modified formadminuser and formadminpass parameters...

7.5CVSS7.3AI score0.04014EPSS

Exploits1References3

NVD•added 2009/05/22 8:30 p.m.•9 views

CVE-2009-1781

Static code injection vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to inject arbitrary PHP code into phpreconfig.php via the formaula parameter...

7.5CVSS7.3AI score0.03691EPSS

Exploits1References3

CVE•added 2009/05/22 8:0 p.m.•37 views

CVE-2009-1780

CVE-2009-1780 affects Frax.dk Php Recommend 1.3 and earlier. The issue is in the password-change flow where authentication is not required, enabling remote attackers to gain administrative privileges by submitting manipulated form_admin_user and form_admin_pass parameters. The core impact is unau...

7.5CVSS7.6AI score0.04014EPSS

Exploits1References3Affected Software1

CVE•added 2009/05/22 8:0 p.m.•38 views

CVE-2009-1781

CVE-2009-1781 describes a static code injection vulnerability in admin.php of Frax.dk Php Recommend 1.3 and earlier. The issue allows remote attackers to inject arbitrary PHP code into phpre_config.php through the form_aula parameter, indicating a file/configuration handling flaw in older version...

7.5CVSS7.5AI score0.03691EPSS

Exploits1References3Affected Software1

Cvelist•added 2009/05/22 8:0 p.m.•14 views

CVE-2009-1781

Static code injection vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to inject arbitrary PHP code into phpreconfig.php via the formaula parameter...

7.3AI score0.03691EPSS

Exploits1References3

Cvelist•added 2009/05/22 8:0 p.m.•17 views

CVE-2009-1779

PHP remote file inclusion vulnerability in admin.php in Frax.dk Php Recommend 1.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the formincludetemplate parameter...

7.6AI score0.0369EPSS

Exploits1References3

Cvelist•added 2009/05/22 8:0 p.m.•16 views

CVE-2009-1780

7.3AI score0.04014EPSS

Exploits1References3

0day.today•added 2009/05/11 12:0 a.m.•25 views

Php Recommend <= 1.3 (AB/RFI/CI) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ================================================================ Php Recommend "; $d = ""; $content = "".$b."?php // Php Recommmend // Created By Frax.dk // GNU Licens // Please do not delete this text $".$d."page = '".$formpage."';...

7.1AI score

Exploits0

Packet Storm•added 2009/05/11 12:0 a.m.•48 views

PHP Recommend 1.3 Bypass / Inclusion / Injection

Php Recommend "; $d = ""; $content = "".$b."?php // Php Recommmend // Created By Frax.dk // GNU Licens // Please do not delete this text $".$d."page = '".$formpage."'; $".$d."includetemplate = '".$formincludetemplate."'; $".$d."cap = '".$formcap."'; $".$d."title = '".$formtitle."'; $".$d."aula =...

0.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by