Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-10-17 | CVE-2006-5312 | Remote Security vulnerability in Ajax Shoutbox PHP remote file inclusion vulnerability in shoutbox.php in the Ajax Shoutbox 0.0.5 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | 7.5 |
2006-10-17 | CVE-2006-5311 | Remote File Include vulnerability in Buzlas 20061Full PHP remote file inclusion vulnerability in includes/archive/archive_topic.php in Buzlas 2006-1 Full allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | 7.5 |
2006-10-17 | CVE-2006-5309 | Remote File Include vulnerability in PHPBB Prillian French Lang_Prillian_Faq.PHP PHP remote file inclusion vulnerability in language/lang_french/lang_prillian_faq.php in the Prillian French 0.8.0 and earlier module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | 7.5 |
2006-10-17 | CVE-2006-5308 | Remote File Include vulnerability in Open Conference Systsems Fullpath Multiple PHP remote file inclusion vulnerabilities in Open Conference Systems (OCS) before 1.1.6 allow remote attackers to execute arbitrary PHP code via a URL in the fullpath parameter in (1) include/theme.inc.php or (2) include/footer.inc.php. | 7.5 |
2006-10-17 | CVE-2006-5307 | Remote File Include vulnerability in Afgb Guestbook 2.2 Multiple PHP remote file inclusion vulnerabilities in AFGB GUESTBOOK 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the Htmls parameter in (1) add.php, (2) admin.php, (3) look.php, or (4) re.php. | 7.5 |
2006-10-17 | CVE-2006-5304 | Remote File Include vulnerability in IncCMS Core Inc_Dir PHP remote file inclusion vulnerability in inc/settings.php in IncCMS Core 1.0.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter. | 7.5 |
2006-10-17 | CVE-2006-5302 | Code Injection vulnerability in Redaction System Redaction System 1.0000 Multiple PHP remote file inclusion vulnerabilities in Redaction System 1.0000 allow remote attackers to execute arbitrary PHP code via a URL in the (1) lang_prefix parameter to (a) conn.php, (b) sesscheck.php, (c) wap/conn.php, or (d) wap/sesscheck.php, or the (2) lang parameter to (e) index.php. | 7.5 |
2006-10-16 | CVE-2006-4182 | Buffer Overflow vulnerability in Clam Anti-Virus PE Rebuilding Heap Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected. | 7.5 |
2006-10-16 | CVE-2006-5292 | Remote File Include vulnerability in Exhibit Engine Exhibit Engine 1.22/1.5Rc4 PHP remote file inclusion vulnerability in photo_comment.php in Exhibit Engine 1.5 RC 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter. | 7.5 |
2006-10-16 | CVE-2006-5291 | Code Injection vulnerability in Alex Downloadengine 1.4.2 PHP remote file inclusion vulnerability in admin/includes/spaw/spaw_control.class.php in Download-Engine 1.4.2 allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. | 7.5 |