Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-1125

Malware in sbrugna...

5CVSS6.4AI score0.00483EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-1124

Malware in sbrugna...

6.4CVSS6.4AI score0.0599EPSS
Exploits1References8
Prion
Prionadded 2007/02/27 2:28 a.m.12 views

Directory traversal

Directory traversal vulnerability in enc/stylecss.php in shopkitplus allows remote attackers to read arbitrary files via a .. dot dot in the changetheme parameter...

6.4CVSS7.1AI score0.0599EPSS
Exploits1References7
NVD
NVDadded 2007/02/27 2:28 a.m.9 views

CVE-2007-1127

Directory traversal vulnerability in enc/stylecss.php in shopkitplus allows remote attackers to read arbitrary files via a .. dot dot in the changetheme parameter...

6.4CVSS6.6AI score0.0599EPSS
Exploits1References7
NVD
NVDadded 2007/02/27 2:28 a.m.10 views

CVE-2007-1128

shopkitplus allows remote attackers to obtain sensitive information via a request to 1 events.php with a curmonth=01 query string or 2 enc/stylecss.php with a changetheme= query string, which reveals the path in various error messages...

5CVSS6.1AI score0.00483EPSS
Exploits0References5
Cvelist
Cvelistadded 2007/02/27 2:0 a.m.17 views

CVE-2007-1127

Directory traversal vulnerability in enc/stylecss.php in shopkitplus allows remote attackers to read arbitrary files via a .. dot dot in the changetheme parameter...

6.6AI score0.0599EPSS
Exploits1References7
Cvelist
Cvelistadded 2007/02/27 2:0 a.m.15 views

CVE-2007-1128

shopkitplus allows remote attackers to obtain sensitive information via a request to 1 events.php with a curmonth=01 query string or 2 enc/stylecss.php with a changetheme= query string, which reveals the path in various error messages...

6.1AI score0.00483EPSS
Exploits0References5
CVE
CVEadded 2007/02/27 2:0 a.m.33 views

CVE-2007-1127

CVE-2007-1127 describes a directory traversal in shopkitplus: enc/stylecss.php accepts a changetheme parameter and can be coerced with .. to read arbitrary files. NVD lists CVSS v2.0 base score 6.4 (Medium) with network attack vector and no authentication, confidentiality and integrity partially ...

6.4CVSS6.6AI score0.0599EPSS
Exploits1References7Affected Software1
CVE
CVEadded 2007/02/27 2:0 a.m.40 views

CVE-2007-1128

CVE-2007-1128 affects shopkitplus. The issue is an information disclosure where requests to (1) events.php with curmonth[]=01 or (2) enc/stylecss.php with changetheme[]= reveal the installation path in error messages. The affected component is PHP-based endpoints; root cause is improper handling ...

5CVSS6.1AI score0.00483EPSS
Exploits0References5Affected Software1
securityvulns
securityvulnsadded 2007/02/25 12:0 a.m.39 views

shopkitplus local file include

lfi: /shopkitplus/enc/stylecss.php?changetheme=../../../../../../../../../../../../etc/passwd full path: /shopkitplus/events.php?curmonth=01 /shopkitplus/enc/stylecss.php?changetheme= regards laurent gaffie...

1.5AI score
Exploits0
Packet Storm
Packet Stormadded 2007/02/24 12:0 a.m.19 views

shopkitplus-lfi.txt

lfi: /shopkitplus/enc/stylecss.php?changetheme=../../../../../../../../../../../../etc/passwd full path: /shopkitplus/events.php?curmonth=01 /shopkitplus/enc/stylecss.php?changetheme= regards laurent gaffié...

7.4AI score
Exploits0
Rows per page
Query Builder