CVE-2018-18656

The PureVPN client before 6.1.0 for Windows stores Login Credentials username and password in cleartext. The location of such files is %PROGRAMDATA%\purevpn\config\login.conf. Additionally, all local users can read this file...

EncapsCMS <= 0.3.6 (config[path]) Remote File Include Vulnerability

No description provided by source. + EncapsCMS = 0.3.6 configpath Remote File Include Vulnerability + Discovered by cr4wl3r cr4wl3r!linuxmail.org + Download : http://scripts.ringsworld.com/content-management/encapscms-0.3.6/ + Vuln Code : commonfoot.php include$config'path'.idxfoot.html;...

PHPIDS 0.4 - Remote File Inclusion

PHPIDS 0.4 - Remote File Inclusion PHPIDS 0.4 - Remote File Inclusion Vulnerability @package PHPIDS @Version 0.4 @license http://www.gnu.org/licenses/lgpl.html LGP @link http://php-ids.org/ Type : Remote File Inclusion Vulnerability Author: eidelweiss Date : 2010-02-08 Location: Indonesia...

EncapsCMS 0.3.6 Remote File Inclusion

EncapsCMS + Download : http://scripts.ringsworld.com/content-management/encapscms-0.3.6/ + Vuln Code : commonfoot.php include$config'path'."idxfoot.html"; if$config"debug"0 echo ''; echo '$POST:';vardump$POST; + PoC : EncapsCMSpath/commonfoot.php?configpath=Shell...

EncapsCMS <= 0.3.6 (config[path]) Remote File Include Vulnerability

Exploit for unknown platform in category web applications =================================================================== EncapsCMS 0 echo ''; echo '$POST:';vardump$POST; + PoC : EncapsCMSpath/commonfoot.php?configpath=Shell 0day.today 2018-03-28...

PT-2006-5180 · Mambo · Contacts Xtd +1

Name of the Vulnerable Software and Affected Versions: Mambo component com contxtd affected versions not specified Description: A remote file inclusion issue in the Contacts XTD ContXTD component for Mambo allows remote attackers to potentially execute arbitrary PHP code via a URL in the mosConfi...

уязвимость в Sad Raven&#39;s guestbook

доброе время суток. Недавно я нашел уязвимость в Sad Raven's guestbook версии 1.1, которая позволяет любому пользователю получить доступ в админ-центр. Заранее прошу извинить, если эту уязвимость уже кто-то нашел, но я не нашел нигде о ней никакого упоминания. Все говорят только о том, что пароли...