CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1161 matches found

Exploit DB•added 2003/01/22 12:0 a.m.•35 views

PHPOutsourcing Zorum 3.x - Remote File Inclusion Command Execution

source: https://www.securityfocus.com/bid/6669/info It has been reported that Zorum may allow remote users to influence to location of PHP includes. Because of this, it is possible for a remote user to include an external arbitrary PHP script containing commands that may be carried out on the...

exploitpack•added 2003/01/14 12:0 a.m.•9 views

vSignup 2.1 - SQL Injection

vSignup 2.1 - SQL Injection source: https://www.securityfocus.com/bid/6606/info A vulnerability has been discovered in vSignup. It has been reported that various PHP scripts used by vAuthenticate are prone to SQL injection attacks. This issue may be exploited by an unauthorized attacker to view...

Exploit DB•added 2003/01/14 12:0 a.m.•21 views

vSignup 2.1 - SQL Injection

source: https://www.securityfocus.com/bid/6606/info A vulnerability has been discovered in vSignup. It has been reported that various PHP scripts used by vAuthenticate are prone to SQL injection attacks. This issue may be exploited by an unauthorized attacker to view protected web pages. An...

NVD•added 2002/12/31 5:0 a.m.•12 views

CVE-2002-2183

phpShare.php in phpShare before 0.6 beta 3 allows remote attackers to include and execute arbitrary PHP scripts from remote servers...

7.5CVSS7.4AI score0.00636EPSS

Exploits0References1

exploitpack•added 2002/12/20 12:0 a.m.•12 views

SPGPartenaires 3.0.1 - delete.php SQL Injection

SPGPartenaires 3.0.1 - delete.php SQL Injection source: https://www.securityfocus.com/bid/6455/info Several vulnerabilities have been discovered in SPGPartenaires. The vulnerabilities are due to insufficient sanitization of the 'pass' and 'SPGP' variables used to construct SQL queries in various...

Exploit DB•added 2002/11/13 12:0 a.m.•47 views

phpBB Advanced Quick Reply Hack 1.0/1.1 - Remote File Inclusion

source: https://www.securityfocus.com/bid/6173/info The phpBB Advanced Quick Reply Hack is prone to an issue which may allow attackers to include arbitrary files from a remote server. It is possible for remote attackers to influence the include path for 'extension.inc' in the 'quickreply.php'...

Exploit DB•added 2002/10/28 12:0 a.m.•17 views

Benjamin Lefevre Dobermann Forum 0.x - 'entete.php?subpath' Remote File Inclusion

source: https://www.securityfocus.com/bid/6057/info Dobermann Forum is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. This issue is present in several PHP script files provided with Dobermann. An attacker may exploit this by supplying a pa...

Exploit DB•added 2002/10/28 12:0 a.m.•29 views

Benjamin Lefevre Dobermann Forum 0.x - 'newtopic.php?subpath' Remote File Inclusion

source: https://www.securityfocus.com/bid/6057/info Dobermann Forum is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. This issue is present in several PHP script files provided with Dobermann. An attacker may exploit this by supplying a pa...

Exploit DB•added 2002/10/09 12:0 a.m.•28 views

VBZoom 1.0 - Arbitrary File Upload

source: https://www.securityfocus.com/bid/5926/info It has been reported that VBZoom 1.01 may allow attackers to upload arbitrary files to a vulnerable system. The vulnerability is the result of VBZoom failing to properly validate the types of files that are received. Validation is done through t...

Exploit DB•added 2002/09/19 12:0 a.m.•23 views

SquirrelMail 1.2.6/1.2.7 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/5763/info SquirrelMail is a feature rich webmail program implemented in the PHP4 language. It is available for Linux and Unix based operating systems. Multiple cross site scripting vulnerabilities have been discovered in various PHP scripts included with...

exploitpack•added 2002/09/19 12:0 a.m.•17 views

SquirrelMail 1.2.61.2.7 - Multiple Cross-Site Scripting Vulnerabilities

SquirrelMail 1.2.61.2.7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/5763/info SquirrelMail is a feature rich webmail program implemented in the PHP4 language. It is available for Linux and Unix based operating systems. Multiple cross site scripting...

exploitpack•added 2002/08/01 12:0 a.m.•20 views

Bharat Mediratta Gallery 1.x - Remote File Inclusion

Bharat Mediratta Gallery 1.x - Remote File Inclusion source: https://www.securityfocus.com/bid/5375/info Gallery is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. This issue is present in several PHP script files provided with Gallery. An...

Exploit DB•added 2002/05/24 12:0 a.m.•17 views

OpenBB 1.0.0 RC3 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/4824/info OpenBB is web forum software written in PHP. It will run on most Linux and Unix variants, in addition to Microsoft Windows operating systems. It has been reported that OpenBB is vulnerable to a cross-site scripting attack. Attackers may exploit...

exploitpack•added 2002/05/17 12:0 a.m.•21 views

Phorum 3.3.2a - Remote Command Execution

Phorum 3.3.2a - Remote Command Execution source: https://www.securityfocus.com/bid/4763/info Phorum is a PHP based web forums package designed for most UNIX variants, Linux, and Microsoft Windows operating systems. A vulnerability has been reported in Phorum that will allow remote attackers to...

Exploit DB•added 2002/05/17 12:0 a.m.•22 views

Phorum 3.3.2a - Remote Command Execution

source: https://www.securityfocus.com/bid/4763/info Phorum is a PHP based web forums package designed for most UNIX variants, Linux, and Microsoft Windows operating systems. A vulnerability has been reported in Phorum that will allow remote attackers to specify external PHP scripts and potentiall...

securityvulns•added 2002/04/25 12:0 a.m.•29 views

PHProjekt multiple vulnerabilities

PHProjekt multiple vulnerabilities PROGRAM: PHProjekt VENDOR: Albrecht Guenther [email protected] et al. HOMEPAGE: http://www.phprojekt.com/ VULNERABLE VERSIONS: all versions below 3.2 LOGIN REQUIRED: yes some issues, no some issues SEVERITY: high DESCRIPTION: "PHProjekt is a groupware suite which...

CVE•added 2001/10/12 4:0 a.m.•61 views

CVE-2001-0777

CVE-2001-0777 affects Omnicron OmniHTTPd 2.0.8. Remote attackers can cause a denial of service via memory exhaustion by a series of requests for PHP scripts. CVSS v2: AV:N/AC:L/Au:N/C:N/I:N/A:P, base score 5.0 (Medium); network vector, no authentication, partial availability impact.

5CVSS7.1AI score0.00886EPSS

Exploits1References3Affected Software1

Cvelist•added 2001/10/12 4:0 a.m.•16 views

CVE-2001-0777

Omnicron OmniHTTPd 2.0.8 allows remote attackers to cause a denial of service memory exhaustion via a series of requests for PHP scripts...

6.7AI score0.00886EPSS

Exploits1References3

securityvulns•added 2001/08/01 12:0 a.m.•46 views

Дырки во многих php-скриптах (directory traversal, code execution)

Можно прочитать любой файл, выполнить PHP-скрипты...

Exploits0References5Affected Software4

FreeBSD Advisory•added 2000/11/20 12:0 a.m.•5 views

FreeBSD-SA-00:75.php

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:75 Security Advisory FreeBSD, Inc. Topic: modphp3/modphp4 allows remote code execution Category: ports Module: modphp3/modphp4 Announced: 2000-11-20 Credits: Jouko...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by