PHP-Agenda 2.2.4 - index.php Local File Inclusion

PHP-Agenda 2.2.4 - index.php Local File Inclusion @===========================================@ | Author = StAkeR [email protected] | @===========================================@ + @==========================================================================@ | Simple PHP Agenda = 2.2.4 Local File...

Joomla! Component mygallery - cid SQL Injection

Joomla! Component mygallery - cid SQL Injection H-T Team HouSSamix & ToXiC350 ===================================================================== Joomla Component mygallery Remote SQL Injection Exploit ===================================================================== AUTHOR : HouSSamix From...

php-Agenda 2.2.4 (index.php page) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ==================================================================== php-Agenda 2.2.4 index.php page Local File Inclusion Vulnerability ==================================================================== @=============email protected |...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in Contenido 4.8.4 allow remote attackers to inject arbitrary web script or HTML via the 1 contenido, 2 Belang, and 3 username parameters...

Sql injection

SQL injection vulnerability in index.php in EZTechhelp EZCMS 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter...

Directory traversal

Directory traversal vulnerability in func.php in Devalcms 1.4a, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the currentpath parameter, in conjunction with certain ... triple dot and ..... sequences in the currentfile...

CVE-2008-2921

SQL injection vulnerability in index.php in EZTechhelp EZCMS 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter...

mUnky 0.0.1 (index.php zone) Local File Inclusion Vulnerability

No description provided by source. ================================================================================ | | | | | | | | | | | | | | | ' | | '/ | | || | | |/ \ | | | | | | | | | |...

Keller Web Admin CMS 0.94 Pro Local File Inclusion Vulnerability

No description provided by source. =========================================================== Keller Web Admin CMS Local File Inclusion Vulnerability =========================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground...

Directory traversal

Directory traversal vulnerability in index.php in AproxEngine 5.1.0.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the page parameter...

Sql injection

SQL injection vulnerability in index.php in eMuSOFT emuCMS 0.3 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a category action...

CVE-2008-2887

The CVE-2008-2887 entry describes a directory traversal in index.php of chaozz@work FubarForum 1.5 that allows remote attackers to include and execute arbitrary local files via a .. in the page parameter. Affected software: FubarForum 1.5 (chaozz@work). Root cause: improper handling of page param...

CVE-2008-2897

CVE-2008-2897 describes a SQL injection in PageSquid CMS 0.3 Beta, where the vulnerability is in index.php via the mass-assignable? page parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists a CVSS v2 base score of 7.5 ( HIGH ), with access over network and n...

CVE-2008-2891

CVE-2008-2891 corresponds to a SQL injection in the PHP script implementing eMuSOFT’s emuCMS 0.3. The vulnerability is triggered via the cat_id parameter in a category action within index.php, allowing remote attackers to execute arbitrary SQL commands. The core issue is improper input handling i...

OTManager CMS 24a - Local File Inclusion Cross-Site Scripting

OTManager CMS 24a - Local File Inclusion Cross-Site Scripting =========================================================== OTManager CMS LFI/XSS Multiple Remote Vulnerabilities =========================================================== ,--^----------,--------,-----,-------^--, | ||||||||| -------...

Directory traversal

Directory traversal vulnerability in index.php in mUnky 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the zone parameter...

CVE-2008-2875

SQL injection vulnerability in index.php in Webdevindo-CMS 1.0.0 allows remote attackers to execute arbitrary SQL commands via the hal parameter...

Sql injection

SQL injection vulnerability in index.php in Softbiz Jokes & Funny Pics Script allows remote attackers to execute arbitrary SQL commands via the sbjokeid parameter, a different vector than CVE-2008-1050...

CVE-2008-2876

CVE-2008-2876 affects the web app mUnky version 0.0.1 . The vulnerability is a directory traversal in index.php that allows an attacker to cause local file inclusion via a .. in the zone parameter, enabling arbitrary local file access/execution according to the entry. The CVSS metrics in the init...

Cross-Site Scripting vulnerability in ExpressionEngine

Здравствуйте 3APA3A! Сообщаю вам о найденной мною Cross-Site Scripting уязвимости в системе ExpressionEngine. XSS: Уязвимость в скрипте index.php в параметре URL, если включен meta-refresh редиректор. http://site/index.php?URL=223E3Cscript3Ealertdocument.cookie3C/script3E Уязвима версия...