CVE-2009-4264

PHP remote file inclusion vulnerability in components/core/connect.php in AROUNDMe 1.1 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the languagepath parameter...

AROUNDMe 1.1 - language_path Remote File Inclusion

AROUNDMe 1.1 - languagepath Remote File Inclusion Discovered by cr4wl3r \ Indonesian Hacker 3rr0r: ./aroundme11/aroundme/components/core/connect.php line 25 PoC : http://server/path/components/core/connect.php?languagepath=Shell Contact Me : cr4wl3r4tlinuxmaildotorg Gorontalo / 2009...

AROUNDMe 1.1 - 'language_path' Remote File Inclusion

Discovered by cr4wl3r \ Indonesian Hacker 3rr0r: ./aroundme11/aroundme/components/core/connect.php line 25 PoC : http://server/path/components/core/connect.php?languagepath=Shell Contact Me : cr4wl3r4tlinuxmaildotorg Gorontalo / 2009...

DEBIAN-CVE-2008-5186

The setlanguagepath function in geshi.php in Generic Syntax Highlighter GeSHi before 1.0.8.1 might allow remote attackers to conduct file inclusion attacks via crafted inputs that influence the default language path $path variable. NOTE: this issue has been disputed by a vendor, stating that only...