CVE-2008-4354

SQL injection vulnerability in the products module in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php...

CVE-2008-4351

Directory traversal vulnerability in index.php in phpSmartCom 0.2 allows remote attackers to include and execute arbitrary files via a .. dot dot in the p parameter...

CVE-2008-4354

The CVE-2008-4354 entry describes an SQL injection in the NetArt Media iBoutique 4.0 products module, exploitable via the cat parameter to index.php. Affected component: products module; vulnerable input handling allows arbitrary SQL execution. Root cause: improper input validation for the cat pa...

CVE-2008-4331

Directory traversal vulnerability in library/pagefunctions.inc.php in phpOCS 0.1 beta3 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the act parameter to index.php...

Directory traversal

Directory traversal vulnerability in library/pagefunctions.inc.php in phpOCS 0.1 beta3 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the act parameter to index.php...

CVE-2008-4330

Summary: CVE-2008-4330 describes a directory traversal vulnerability in LanSuite 3.3.2, specifically in index.php where the design parameter can be exploited to include and execute arbitrary local files via a .. sequence. The NVD entry assigns a CVSS v2 base score of 7.5 (HIGH) with Network attac...

CVE-2008-4331

CVE-2008-4331 describes a directory traversal vulnerability in phpOCS 0.1 beta3 and earlier. The flaw resides in library/pagefunctions.inc.php, where an attacker can influence the act parameter in index.php to perform dot-dot traversal, enabling remote inclusion and execution of arbitrary local f...

Pritlog <= 0.4 (filename) Remote File Disclosure Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Printlog = 0.4: Remote File Edition Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= $ Program: Printlog $ File affected: index.php $ Version: 0.4 $ Download: http://www.hardkap.net/pritlog Found...

Pritlog 0.4 - Filename Remote File Disclosure

Pritlog 0.4 - Filename Remote File Disclosure -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Printlog eNYe-Sec - www.enye-sec.org -- Description by the author's page -- PRITLOG is an extremely simple, small and powerful blog system. It does not use or need a MYSQL database and fully works bas...

Pritlog 0.4 - 'Filename' Remote File Disclosure

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Printlog eNYe-Sec - www.enye-sec.org -- Description by the author's page -- PRITLOG is an extremely simple, small and powerful blog system. It does not use or need a MYSQL database and fully works based on flat files. The idea is derived from a...

PHPcounter 1.3.2 - index.php SQL Injection

PHPcounter 1.3.2 - index.php SQL Injection !/usr/bin/php -q milw0rm.com 2008-09-28...

plugspace-lfi.txt

:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl PlugSpace v0.1 Local File Inclusion Vulnerability Download: http://sourceforge.net/projects/plugspace/ Vuln:...

帝国ECMS V5 /e/member/list/index.php注入漏洞

帝国ECMS /e/member/list/index.php文件: if$sear $keyboard=RepPostVar2$GET'keyboard'; if$keyboard $add.=$where.$userusername." like '%$keyboard%'"; $search.="&sear=1&keyboard=$keyboard"; 判断sear参数是否存在,然后直接去keyboard的参数,然后再判断keyboard值是否为空,如果不为 空就直接把keyboard带入查询产生注射漏洞. 帝国ECMS V5 暂无...

PlugSpace 0.1 (index.php navi) Local File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl PlugSpace v0.1 Local File Inclusion Vulnerability Download:...

PHPcounter 1.3.2 - 'index.php' SQL Injection

!/usr/bin/php -q milw0rm.com 2008-09-28...

PlugSpace 0.1 (index.php navi) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================= PlugSpace 0.1 index.php navi Local File Inclusion Vulnerability ================================================================= :::::::-. ... ::::::. :::. ;;, ';, ;;...

PlugSpace 0.1 - navi Local File Inclusion

PlugSpace 0.1 - navi Local File Inclusion :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl PlugSpace v0.1 Local File Inclusion Vulnerability Download:...

PlugSpace 0.1 - 'navi' Local File Inclusion

:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl PlugSpace v0.1 Local File Inclusion Vulnerability Download: http://sourceforge.net/projects/plugspace/ Vuln:...

phpOCS <= 0.1-beta3 (index.php act) Local File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl phpOCS = 0.1-beta3 Local File Inclusion Vulnerability Script: "phpOCS is a fully featured Online...

phpOCS <= 0.1-beta3 (index.php act) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ====================================================================== phpOCS = 0.1-beta3 index.php act Local File Inclusion Vulnerability ====================================================================== :::::::-. ... ::::::. :::. ;;...