142 matches found
OpenBB 1.0/1.1 - 'index.php' SQL Injection
source: https://www.securityfocus.com/bid/7401/info It has been reported that OpenBB does not properly check input passed via the 'index.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of the bulletin board software. The consequenc...
Portix-PHP 0.4 - 'index.php' Directory Traversal
source: https://www.securityfocus.com/bid/4038/info Portix-PHP is freely available web portal software. It is written in PHP and will run on most Unix and Linux variants. Portix-PHP is prone to directory traversal attacks. The script index.php does not sufficiently filter '../' sequences from web...