CVE-2008-3737

Unspecified vulnerability in 1 System Consultants La!Cooda WIZ 1.4.0 and earlier and 2 SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to execute arbitrary PHP scripts, and delete files, read files, and possibly have unknown other impact...

PT-2008-4375 · Apache +2 · Apache Tomcat +2

Name of the Vulnerable Software and Affected Versions: Apache Tomcat versions 4.1.0 through 4.1.37 Apache Tomcat versions 5.5.0 through 5.5.26 Apache Tomcat versions 6.0.0 through 6.0.16 Description: The issue allows remote attackers to read arbitrary files via encoded directory traversal sequenc...

CVE-2008-3087

CVE-2008-3087 affects Kasseler CMS 1.3.0 and enables a directory traversal via a .. in the file parameter to index.php (possibly related to the phpManual module). The NVD entry records this as a medium-severity vulnerability (CVSS v2 base score 5.0) with network access and no authentication requi...

CVE-2008-3087

Directory traversal vulnerability in Kasseler CMS 1.3.0 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter to index.php, possibly related to the phpManual module...

Fonality trixbox - langChoice Local File Inclusion (connect-back) (2)

Fonality trixbox - langChoice Local File Inclusion connect-back 2 !/usr/bin/perl -w Jean-Michel BESNARD / LEXSI Audit 2008-07-09 This is an update of the previous exploit. We can now get a root shell, thanks to sudo. perl trixboxfiv2.pl 192.168.1.212 Please listen carefully as our menu option has...

CVE-2008-2045

SugarCRM Community Edition 4.5.1 and 5.0.0 are affected by an absolute path traversal in modules/Feeds/Feed.php, allowing remote attackers to read arbitrary files by supplying a full path in the URL parameter; the content is placed into a related cache file in the .cache/feeds directory. This sum...

CVE-2008-1924

Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running on shared hosts, allows remote authenticated users with CREATE table permissions to read arbitrary files via a crafted HTTP POST request, related to use of an undefined UploadDir variable...

CVE-2008-1415

CVE-2008-1415 affects the web app component index.php in Multiple Time Sheets (MTS) 5.0 and earlier. The vulnerability is a directory traversal through the tab parameter, using modified dot-dot sequences ("../..//"), allowing remote attackers to read arbitrary files. The provided documents do not...

Debian Security Advisory DSA 1521-1 (lighttpd)

The remote host is missing an update to lighttpd announced via advisory DSA 1521-1. OpenVAS Vulnerability Test $Id: deb15211.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1521-1 lighttpd Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Input validation

Opera before 9.26 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename into a file input...

CVE-2008-0396

CVE-2008-0396 is a directory traversal vulnerability in BitDefender Update Server (http.exe) used by BitDefender products. The vulnerability allows an unauthenticated remote attacker to read arbitrary files by crafting HTTP requests with directory traversal sequences (..). The issue affects the U...

Debian Security Advisory DSA 150-1 (interchange)

The remote host is missing an update to interchange announced via advisory DSA 150-1. OpenVAS Vulnerability Test $Id: deb1501.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 150-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

[Full-disclosure] HP eSupportDiagnostics hpediags.dll Information Disclosure

The HP eSupportDiagnostics hpediag.dll exposes some methods that allow the reading of arbitrary files and registry values. hpediag.dll, version 1.0.11.0 PoC as follows: --------------------- html head script language="JavaScript" DEFER function Check var out = fileUtil.ReadTextFilesomePath; var o...

hpreg-read.txt

The HP eSupportDiagnostics hpediag.dll exposes some methods that allow the reading of arbitrary files and registry values. hpediag.dll, version 1.0.11.0 PoC as follows: --------------------- function Check var out = fileUtil.ReadTextFilesomePath; var out = regUtil.ReadValuesomePath;...

CVE-2007-6187

Multiple directory traversal vulnerabilities in PHP Content Architect aka NoAh 0.9 pre 1.2 and earlier allow remote attackers to read arbitrary files via a .. dot dot in the filepath parameter to 1 cssfile.php, 2 jsfile.php, or 3 xmlfile.php in noah/modules/nosystem/templates/...

CVE-2007-5811

CVE-2007-5811 affects phpMyConferences up to version 8.0.2, specifically the PageTraiteDownload.php component. The vulnerability is a directory traversal via the dir parameter (..), allowing reads of arbitrary files. The issue is disputed for 8.0.2 by a third party who notes the PHP code may be s...

CVE-2007-5337

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when running on Linux systems with gnome-vfs support, might allow remote attackers to read arbitrary files on SSH/sftp servers that accept key authentication by creating a web page on the target server, in which the web page contains URIs...

Design/Logic Flaw

ioncubeloaderwin5.2.dll in the ionCube Loader 6.5 extension for PHP 5.2.4 does not follow safemode and disablefunctions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by reading arbitrary files via the ioncubereadfile function...

CVE-2007-5447

ioncubeloaderwin5.2.dll in the ionCube Loader 6.5 extension for PHP 5.2.4 does not follow safemode and disablefunctions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by reading arbitrary files via the ioncubereadfile function...

CVE-2007-5447

CVE-2007-5447 affects ionCube Loader 6.5 for PHP 5.2.4. The ioncube_loader_win_5.2.dll does not enforce safe_mode or disable_functions, enabling context-dependent attackers to read arbitrary files via ioncube_read_file. This vulnerability is documented in the NVD entry for CVE-2007-5447 and is ec...