Path traversal

Absolute path traversal vulnerability in a certain ActiveX control in PGPBBox.dll in EldoS SecureBlackbox sbb 5.1.0.112 allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SaveToFile method. NOTE: the provenance of this information is unknown;...

CVE-2007-3785

CVE-2007-3785: Absolute path traversal in EldoS SecureBlackbox (sbb) 5.1.0.112 via PGPBBox.dll ActiveX SaveToFile allows a full path to create/overwrite files. The description is consistent across NVD and related records. Connected documents do not provide additional technical details (no expande...

CVE-2007-3649

Absolute path traversal vulnerability in a certain ActiveX control in hpqvwocx.dll 2.1.0.556 in Hewlett-Packard HP Digital Imaging allows remote attackers to create or overwrite arbitrary files via the second argument to the SaveToFile method...

Path traversal

Absolute path traversal vulnerability in a certain ActiveX control in hpqvwocx.dll 2.1.0.556 in Hewlett-Packard HP Digital Imaging allows remote attackers to create or overwrite arbitrary files via the second argument to the SaveToFile method...

CVE-2007-3649

Absolute path traversal vulnerability in a certain ActiveX control in hpqvwocx.dll 2.1.0.556 in Hewlett-Packard HP Digital Imaging allows remote attackers to create or overwrite arbitrary files via the second argument to the SaveToFile method...

CVE-2007-3649

The CVE-2007-3649 issue affects HP Digital Imaging’s hpqvwocx.dll 2.1.0.556 (ActiveX control). The vulnerability is an absolute path traversal in the SaveToFile method’s second argument, allowing remote attackers to create or overwrite arbitrary files. The provided sources confirm the affected co...

CVE-2007-3487

Absolute path traversal in a certain ActiveX control in hpqxml.dll 2.0.0.133 in Hewlett-Packard HP Photo Digital Imaging allows remote attackers to create or overwrite arbitrary files via the argument to the saveXMLAsFile method...

CVE-2007-3487

CVE-2007-3487 describes an absolute path traversal in HP Photo Digital Imaging’s hpqxml.dll (version 2.0.0.133) ActiveX control. The vulnerability allows remote attackers to create or overwrite arbitrary files by supplying bytes to the saveXMLAsFile method. The impact is partial confidentiality a...

CVE-2007-3406

CVE-2007-3406 affects Microsoft Internet Explorer 6 on Windows XP SP2. It describes multiple absolute path traversal vulnerabilities allowing remote access to arbitrary local files via the file: URI or related attributes/tags (src in bgsound, input, EMBED, img, script; data in object; value in pa...

LiveCMS <= 3.4 (categoria.php cid) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/perl / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title LiveCMS = 3.4 SQL Injection,&nbs...

LiveCMS <= 3.4 (categoria.php cid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =============================================================== LiveCMS = 3.4 categoria.php cid Remote SQL Injection Exploit =============================================================== !/usr/bin/perl / \ / \ | | | | | | | | | | | / | |...

LiveCMS 3.4 - categoria.php?cid SQL Injection

LiveCMS 3.4 - categoria.php?cid SQL Injection !/usr/bin/perl / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title LiveCMS = 3.4 SQL Injection, Absolute Path Disclosure, XSS Injection, Arbitrary File...

LiveCMS 3.4 - &#039;categoria.php?cid&#039; SQL Injection

!/usr/bin/perl / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title LiveCMS = 3.4 SQL Injection, Absolute Path Disclosure, XSS Injection, Arbitrary File Upload Description This is a free CMS system...

ASP.NET path validation vulnerability-vulnerability warning-the black bar safety net

P. S This vulnerability is a little outlandish. the Huh. But domestic seems no one has been filed. This are 0 to 5 years of vulnerability. Last year I take to the data. However. There is no day to several stations. As if all the patched. Pity. in. Found late. Look at the ms to the announcement...

Remote file inclusion

PHP remote file inclusion vulnerability in engine/engine.inc.php in WebKalk2 1.9.0 allows remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter...

PT-2007-3536 · Com Jambook · Jambook

Name of the Vulnerable Software and Affected Versions: Jambook com Jambook version 1.0 beta7 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig absolute path parameter. However, it has been disputed by a reliable third party because the...

Mambo/Joomla Module Weather &#40;absolute_path&#41; Remote File include Vuln

============================================================ Mambo/Joomla Module Weather absolutepath Remote File include Vuln ============================================================ Found By : Cold z3ro , [email protected] ============================================================...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in the Jx Development Article 1.1 and earlier component for Mambo and Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter to comarticles.php in 1 components/ or 2 classes/html/...

CVE-2007-2049

Multiple PHP remote file inclusion vulnerabilities in the Calendar Module comcalendar 1.5.5 for Mambo allow remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter to 1 comcalendar.php or 2 modcalendar.php...

CVE-2007-2044

PHP remote file inclusion vulnerability in modweather.php in the Antonis Ventouris Weather module for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter...