10 matches found
EUVD-2009-3406
Malware in sbrugna...
CVE-2009-3424
Multiple PHP remote file inclusion vulnerabilities in MaxCMS 3.11.20b, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 isprojectPath parameter to includes/InstantSite/inc.isroot.php; GLOBALSthCMSroot parameter to 2 classes/class.Tree.php, 3...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in MaxCMS 3.11.20b, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 isprojectPath parameter to includes/InstantSite/inc.isroot.php; GLOBALSthCMSroot parameter to 2 classes/class.Tree.php, 3...
CVE-2009-3426
CVE-2009-3426 concerns a PHP remote file inclusion in MaxCMS 3.11.20b. The flaw is in includes/file_manager/special.php, where the fm_includes_special parameter can be controlled to include a remote PHP file, enabling arbitrary code execution on the server. Documented affected component: MaxCMS 3...
CVE-2009-3424
Multiple PHP remote file inclusion vulnerabilities in MaxCMS 3.11.20b, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 isprojectPath parameter to includes/InstantSite/inc.isroot.php; GLOBALSthCMSroot parameter to 2 classes/class.Tree.php, 3...
CVE-2009-3426
PHP remote file inclusion vulnerability in includes/filemanager/special.php in MaxCMS 3.11.20b allows remote attackers to execute arbitrary PHP code via a URL in the fmincludesspecial parameter...
MAXcms 3.11.20b Remote File Inclusion
=============================================================================================== o MAXcms - Databay Content Management System 3.11.20b Remote File Inclusion Vulnerability Software : MAXcms - Databay Content Management System version 3.11.20b Vendor : http://www.databay.de Download ...
MAXcms 3.11.20b RFI / File Disclosure Vulnerabilities
No description provided by source. MAXcms 3.11.20b RFI / File Disclosure Vulnerabilities I- Remote File Disclosure Vulnerabilities In /includes/inc.thcmsadmindirtree.php Code 22: if $GET"getjs"=="1" -------!! 23: readfile$thCMSroot."/includes/wzdragdrop.js";-------!! 24: exit; 25: POC :...
MAXcms 3.11.20b - Remote File Inclusion File Disclosure
MAXcms 3.11.20b - Remote File Inclusion File Disclosure MAXcms 3.11.20b RFI / File Disclosure Vulnerabilities I- Remote File Disclosure Vulnerabilities In /includes/inc.thcmsadmindirtree.php Code 22: if $GET"getjs"=="1" POC :...
MAXcms 3.11.20b - Remote File Inclusion / File Disclosure
MAXcms 3.11.20b RFI / File Disclosure Vulnerabilities I- Remote File Disclosure Vulnerabilities In /includes/inc.thcmsadmindirtree.php Code 22: if $GET"getjs"=="1" POC : http://localhost//microcms/includes/filemanager/special.php?fmincludesspecial=http://localhost/020.txt Thanx To ... | || \ \ \ ...