Lucene search
K

422 matches found

CVE
CVE
added 2007/10/14 6:0 p.m.42 views

CVE-2007-5453

CVE-2007-5453 concerns Php-Stats 0.1.9.2, which contains multiple eval-injection vulnerabilities. The issue allows remote authenticated administrators to execute arbitrary code by injecting PHP sequences into the php-stats-options record in the _options table, which is subsequently evaluated via ...

8.5CVSS7.8AI score0.0391EPSS
Exploits0References3Affected Software1
xssed
xssed
added 2007/10/03 12:0 a.m.10 views

Unfixed XSS vulnerability at www.vicman.net

Security researcher MaXWeL, has submitted on 10/03/2007 a cross-site-scripting XSS vulnerability affecting www.vicman.net, which at the time of submission ranked 6003 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 10/03/2007. It is currently...

6.6AI score
Exploits0References1
Packet Storm
Packet Storm
added 2007/09/18 12:0 a.m.21 views

chupix-file.txt

Chupix CMS 0.2.3 download.php Remote File Download Vulnerability P.Script : http://sourceforge.net/project/showfiles.php?groupid=134930 download.php Lain:18-57 - ifisset$GET'fichier' ", "", $result; $num = trim$result; else $num = 0; $num++; $msg = ""; if!isdir$repertoire mkdir $repertoire, 0755;...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2007/09/15 12:0 a.m.12 views

Chupix CMS 0.2.3 (download.php) Remote File Disclosure Vulnerability

No description provided by source. Chupix CMS 0.2.3 download.php Remote File Download Vulnerability P.Script : http://sourceforge.net/project/showfiles.php?groupid=134930 download.php Lain:18-57 - ifisset$GET'fichier' --------------XXXX // téléchargement du fichier $file = "archives/"...

7.1AI score
Exploits0
0day.today
0day.today
added 2007/09/15 12:0 a.m.27 views

Chupix CMS 0.2.3 (download.php) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ==================================================================== Chupix CMS 0.2.3 download.php Remote File Disclosure Vulnerability ==================================================================== Chupix CMS 0.2.3 download.php Remo...

7.1AI score
Exploits0
CVE
CVE
added 2007/05/04 1:0 a.m.58 views

CVE-2007-2507

CVE-2007-2507 describes a directory traversal vulnerability in the Treble Designs 1024 CMS 0.7. The flaw exists in includes/download.php and allows remote attackers to read arbitrary files by providing a ../ sequence in the item parameter. The issue affects Treble Designs 1024 CMS 0.7 and enables...

7.8CVSS6.7AI score0.03476EPSS
Exploits1References7Affected Software1
securityvulns
securityvulns
added 2007/04/30 12:0 a.m.42 views

USP FOSS Distribution 1.01(download.php dnld)Remote File Disclosure

USP FOSS Distribution 1.01download.php dnldRemote File Disclosure D.Script: http://norcalvex.org/pagode/uspfossv101.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Dork:intitle:USP FOSS Distribution V.Code In /user/download.php: /user/download.php ? $file = @$GET'dnld';----+...

0.3AI score
Exploits0
0day.today
0day.today
added 2007/04/24 12:0 a.m.15 views

USP FOSS Distribution 1.01 (dnld) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ====================================================================== USP FOSS Distribution 1.01 dnld Remote File Disclosure Vulnerability ====================================================================== USP FOSS Distribution...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/04/24 12:0 a.m.13 views

USP FOSS Distribution 1.01 (dnld) Remote File Disclosure Vulnerability

No description provided by source. USP FOSS Distribution 1.01download.php dnldRemote File Disclosure D.Script: http://norcalvex.org/pagode/uspfossv101.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Dork:intitle:USP FOSS Distribution V.Code In /user/download.php:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/04/24 12:0 a.m.12 views

USP FOSS Distribution 1.01 - dnld Remote File Disclosure

USP FOSS Distribution 1.01 - dnld Remote File Disclosure USP FOSS Distribution 1.01download.php dnldRemote File Disclosure D.Script: http://norcalvex.org/pagode/uspfossv101.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Dork:intitle:USP FOSS Distribution V.Code In...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2007/04/24 12:0 a.m.34 views

USP FOSS Distribution 1.01 - 'dnld' Remote File Disclosure

USP FOSS Distribution 1.01download.php dnldRemote File Disclosure D.Script: http://norcalvex.org/pagode/uspfossv101.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Dork:intitle:USP FOSS Distribution V.Code In /user/download.php: /user/download.php Exploit:PathUSP...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2007/04/17 12:0 a.m.22 views

garennes-rfi.txt

Garennes 0.6.1 = Remote File Include Vulnerablites D.Script: https://adullact.net/frs/download.php/672/garennes-easyphp-0.6.1.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.cc Exploit:Path/cpe/index.php?repertoireconfig=Shell Exploit:Path/direction/index.php?repertoireconfig=She...

7.4AI score
Exploits0
NVD
NVD
added 2007/03/27 1:19 a.m.15 views

CVE-2007-1698

download.php in Philex 0.2.3 and earlier allows remote attackers to read arbitrary files and source code, and obtain sensitive information via the file parameter...

5CVSS6.4AI score0.02496EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/03/27 1:0 a.m.18 views

CVE-2007-1698

download.php in Philex 0.2.3 and earlier allows remote attackers to read arbitrary files and source code, and obtain sensitive information via the file parameter...

6.4AI score0.02496EPSS
Exploits1References4
exploitpack
exploitpack
added 2007/03/23 12:0 a.m.23 views

Philex 0.2.3 - Remote File Inclusion File Disclosure

Philex 0.2.3 - Remote File Inclusion File Disclosure Philex 0.2.3 Exploit Remote File Include: PathPhilex/header.inc.php?CssFile=Shell V.Code Disclosure: readfile$HTTPGETVARS"file"; Exploit Remote File Disclosure: PathPhilex/download.php?file=conf.inc.php milw0rm.com 2007-03-23...

Exploits0
xssed
xssed
added 2007/03/18 12:0 a.m.10 views

Unfixed XSS vulnerability at keznews.com

Security researcher Vagrant, has submitted on 18/03/2007 a cross-site-scripting XSS vulnerability affecting keznews.com, which at the time of submission ranked 14644 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/03/2007. It is currently...

Exploits0References1
NVD
NVD
added 2007/03/16 9:19 p.m.19 views

CVE-2007-1478

download.php in McGallery 0.5b allows remote attackers to read arbitrary files and obtain script source code via the filename parameter...

5CVSS6.9AI score0.02496EPSS
Exploits1References4
CVE
CVE
added 2007/03/16 9:0 p.m.64 views

CVE-2007-1478

CVE-2007-1478 affects McGallery 0.5b where download.php can be abused to read arbitrary files and reveal script source code via the filename parameter. This is a remote-access risk (attack surface via web requests) that enables partial confidentiality loss. The available documents describe the vu...

5CVSS6.9AI score0.02496EPSS
Exploits1References4Affected Software1
0day.today
0day.today
added 2007/03/15 12:0 a.m.59 views

McGallery 0.5b (download.php) Arbitrary File Download Vulnerability

Exploit for unknown platform in category web applications =================================================================== McGallery 0.5b download.php Arbitrary File Download Vulnerability =================================================================== Piker McGallery 0.5b Arbitrary File...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/15 12:0 a.m.33 views

McGallery 0.5b - download.php Arbitrary File Download

McGallery 0.5b - download.php Arbitrary File Download Piker McGallery 0.5b Arbitrary File Download Vulnerability Affected software: McGallery 0.5b Vendor: http://sourceforge.net/projects/mcgallery/ Dork: allintitle: "MCgallery 0.5b" http://target/path/download.php?filename=main.php Found by Piker...

0.2AI score
Exploits0
Rows per page
Query Builder