Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0068
CGI PHP mylog script allows an malicious user to read any file on the target server.
Php Php 2.0
Php Php 2.0b10
Php Php 1.0
1 EDB exploit
NA
CVE-1999-0238
php.cgi allows malicious users to read any file on the system.
Php Php 2.0
Php Php 2.0b10
Php Php 1.0
1 EDB exploit
NA
CVE-2006-0648
Multiple directory traversal vulnerabilities in PHP iCalendar 2.0.1, 2.1, and 2.2 allow remote malicious users to include arbitrary files via the (1) getdate and possibly other parameters used in the replace_files function in search.php and (2) $file variable as used in the parse...
Php Icalendar Php Icalendar 2.0
Php Icalendar Php Icalendar 2.0.1
Php Icalendar Php Icalendar 2.1
NA
CVE-2004-0595
The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explorer and Safari, which ignore nul...
Redhat Fedora Core Core 2.0
Trustix Secure Linux 2.0
Redhat Fedora Core Core 1.0
Avaya Converged Communications Server 2.0
Trustix Secure Linux 1.5
Trustix Secure Linux 2.1
Avaya S8500 R2.0.1
Php Php 4.2.0
Php Php 4.1.0
Php Php 4.0.4
Php Php 4.3.0
Php Php 4.0.5
Php Php 5.0
Avaya S8300 R2.0.0
Php Php 4.3.6
Avaya Integrated Management
Php Php 4.3.7
Php Php 4.2.2
Php Php 4.3.2
Php Php 4.0.7
Php Php 4.0.2
Php Php 4.3.3
1 EDB exploit
NA
CVE-2000-0860
The file upload capability in PHP versions 3 and 4 allows remote malicious users to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables.
Php Php 3.0
Php Php 3.0.5
Php Php 3.0.11
Php Php 3.0.1
Php Php 3.0.2
Php Php 3.0.8
Php Php 3.0.13
Php Php 3.0.7
Php Php 3.0.6
Php Php 2.0
Php Php 3.0.10
Php Php 3.0.4
Php Php 4.0
Php Php 2.0b10
Php Php 1.0
Php Php 3.0.12
Php Php 3.0.9
Php Php 3.0.3
NA
CVE-2006-1291
publish.ical.php in Jim Hu and Chad Little PHP iCalendar 2.21 and previous versions does not require authentication for write access to the calendars directory, which allows remote malicious users to upload and execute arbitrary PHP scripts via a WebDAV PUT request with a filenam...
Php Icalendar Php Icalendar 2.0b
Php Icalendar Php Icalendar 2.0
Php Icalendar Php Icalendar 2.0a2
Php Icalendar Php Icalendar 2.0.1
Php Icalendar Php Icalendar
Php Icalendar Php Icalendar 2.1
Php Icalendar Php Icalendar 2.0c
1 EDB exploit
NA
CVE-2006-1292
Directory traversal vulnerability in Jim Hu and Chad Little PHP iCalendar 2.21 and previous versions allows remote malicious users to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in the phpicalendar[cookie_language] and php...
Php Icalendar Php Icalendar 2.0b
Php Icalendar Php Icalendar 2.0
Php Icalendar Php Icalendar 2.0a2
Php Icalendar Php Icalendar 2.0.1
Php Icalendar Php Icalendar
Php Icalendar Php Icalendar 2.1
Php Icalendar Php Icalendar 2.0c
1 EDB exploit
NA
CVE-2010-2041
Multiple cross-site scripting (XSS) vulnerabilities in index.php in PHP-Calendar prior to 2.0 Beta7 allow remote malicious users to inject arbitrary web script or HTML via the (1) description and (2) lastaction parameters.
Php-calendar Php-calendar 0.8
Php-calendar Php-calendar 0.5
Php-calendar Php-calendar 0.7
Php-calendar Php-calendar 0.1
Php-calendar Php-calendar 2.0
Php-calendar Php-calendar 0.2
Php-calendar Php-calendar 0.10
Php-calendar Php-calendar 0.4
Php-calendar Php-calendar 1.1
Php-calendar Php-calendar
Php-calendar Php-calendar 0.3
Php-calendar Php-calendar 0.6
Php-calendar Php-calendar 0.9
Php-calendar Php-calendar 0.9.1
NA
CVE-2008-3762
SQL injection vulnerability in onlinestatus_html.php in Turnkey PHP Live Helper 2.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the dep parameter, related to lack of input sanitization in the get function in global.php.
Turnkeywebtools Php Live Helper 2.0
Turnkeywebtools Php Live Helper
1 EDB exploit
NA
CVE-2008-3764
Eval injection vulnerability in globalsoff.php in Turnkey PHP Live Helper 2.0.1 and previous versions allows remote malicious users to execute arbitrary PHP code via the test parameter, and probably arbitrary parameters, to chat.php.
Turnkeywebtools Php Live Helper 2.0
Turnkeywebtools Php Live Helper
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »