Lucene search
K

178 matches found

NVD
NVD
added 2008/05/14 6:20 p.m.11 views

CVE-2008-2220

Multiple PHP remote file inclusion vulnerabilities in Interact Learning Community Environment Interact 2.4.1, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 CONFIGLANGUAGECPATH parameter to modules/forum/embedforum.php and the 2...

6.8CVSS7.5AI score0.01812EPSS
Exploits1References3
CVE
CVE
added 2008/05/14 6:0 p.m.44 views

CVE-2008-2220

CVE-2008-2220 affects Interact Learning Community Environment Interact 2.4.1. The vulnerability arises when register_globals is enabled and enables remote PHP code execution via remote file inclusion. Specifically, an attacker can supply a URL via CONFIG[LANGUAGE_CPATH] to modules/forum/embedforu...

6.8CVSS7.6AI score0.01812EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2008/05/14 6:0 p.m.27 views

CVE-2008-2220

Multiple PHP remote file inclusion vulnerabilities in Interact Learning Community Environment Interact 2.4.1, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 CONFIGLANGUAGECPATH parameter to modules/forum/embedforum.php and the 2...

7.5AI score0.01812EPSS
Exploits1References3
seebug.org
seebug.org
added 2008/05/02 12:0 a.m.29 views

interact 2.4.1 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. -========================================== ViVa Islam + YeMeN ====================================- Name : interact 2.4.1 Multiple Remote RFI Vulnerabiliy Download From : http://puzzle.dl.sourceforge.net/sourceforge/cce-interact/interact-2-4-1.tar.gz Found By :...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/04/30 12:0 a.m.21 views

interact 2.4.1 Multiple Remote File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ============================================================= interact 2.4.1 Multiple Remote File Inclusion Vulnerabilities ============================================================= -========================================== ViVa Isla...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/04/30 12:0 a.m.21 views

Interact 2.4.1 - Multiple Remote File Inclusions

Interact 2.4.1 - Multiple Remote File Inclusions -========================================== ViVa Islam + YeMeN ====================================- Name : interact 2.4.1 Multiple Remote RFI Vulnerabiliy Download From :...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/04/30 12:0 a.m.35 views

Interact 2.4.1 - Multiple Remote File Inclusions

-========================================== ViVa Islam + YeMeN ====================================- Name : interact 2.4.1 Multiple Remote RFI Vulnerabiliy Download From : http://puzzle.dl.sourceforge.net/sourceforge/cce-interact/interact-2-4-1.tar.gz Found By : RoMaNcYxHaCkEr RoMaNTiC-TeaM...

7.4AI score
Exploits0
Prion
Prion
added 2007/08/08 1:17 a.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Interact before 2.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2007-3328...

4.3CVSS5.8AI score0.02295EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2007/08/08 1:17 a.m.16 views

CVE-2007-4177

Multiple cross-site scripting XSS vulnerabilities in Interact before 2.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2007-3328...

4.3CVSS5.7AI score0.01223EPSS
Exploits0References6
Cvelist
Cvelist
added 2007/08/08 1:11 a.m.19 views

CVE-2007-4177

Multiple cross-site scripting XSS vulnerabilities in Interact before 2.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2007-3328...

5.7AI score0.01223EPSS
Exploits0References6
CVE
CVE
added 2007/08/08 1:11 a.m.48 views

CVE-2007-4177

CVE-2007-4177: Multiple cross-site scripting (XSS) vulnerabilities in Interact before 2.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. The linked record notes potential overlap with CVE-2007-3328. Public details in the provided documents do not specify th...

4.3CVSS5.7AI score0.01223EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2007/06/21 6:30 p.m.16 views

CVE-2007-3328

Multiple cross-site scripting XSS vulnerabilities in Interact 2.4 beta 1 allow remote attackers to inject arbitrary web script or HTML via the 1 modulekey parameter to a kb/kb.php, b quiz/runquiz.php, c quiz/quiz.php, d forum/forum.php, e forum/byname.php, and f journal/journalview.php in modules...

4.3CVSS5.8AI score0.02295EPSS
Exploits0References12
Prion
Prion
added 2007/06/21 6:30 p.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Interact 2.4 beta 1 allow remote attackers to inject arbitrary web script or HTML via the 1 modulekey parameter to a kb/kb.php, b quiz/runquiz.php, c quiz/quiz.php, d forum/forum.php, e forum/byname.php, and f journal/journalview.php in modules...

4.3CVSS6AI score0.02295EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2007/06/21 6:0 p.m.21 views

CVE-2007-3328

Multiple cross-site scripting XSS vulnerabilities in Interact 2.4 beta 1 allow remote attackers to inject arbitrary web script or HTML via the 1 modulekey parameter to a kb/kb.php, b quiz/runquiz.php, c quiz/quiz.php, d forum/forum.php, e forum/byname.php, and f journal/journalview.php in modules...

5.8AI score0.02295EPSS
Exploits0References12
CVE
CVE
added 2007/06/21 6:0 p.m.50 views

CVE-2007-3328

CVE-2007-3328 affects Interact 2.4 beta 1 and is described as multiple XSS vulnerabilities. The vulnerable components are in Interact modules: (1) module_key parameter used by kb/kb.php, quiz/runquiz.php, quiz/quiz.php, forum/forum.php, forum/byname.php, journal/journalview.php; (2) tag_key param...

4.3CVSS5.8AI score0.02295EPSS
Exploits0References12Affected Software1
securityvulns
securityvulns
added 2007/06/21 12:0 a.m.44 views

Interact multiple XSS vuln.

Interact multiple XSS vuln. Vuln. discovered by : r0t Date: 21 June 2007 vendor:www.interactole.org orginal advisory: http://pridels-team.blogspot.com/2007/06/interact-multiple-xss-vuln.html affected versions: tested on "Interact 2.4 beta 1" other versions also can be affected. Interact contains ...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2006/12/12 12:0 a.m.21 views

Interact远程文件包含漏洞

Interact是一款基于PHP的WEB应用程序。 Interact不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于多个脚本对用户提交的'CONFIGBASEPATH'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Interact Learning Community Environment Interact 2.2 http://www.interactlms.org/spaces/space.php?spacekey=1&javascript=1...

7.1AI score
Exploits0
NVD
NVD
added 2006/08/30 1:4 a.m.13 views

CVE-2006-4448

Multiple PHP remote file inclusion vulnerabilities in interact 2.2, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 CONFIGBASEPATH parameter in a admin/autoprompter.php and b includes/common.inc.php, and the 2 CONFIGLANGUAGECPATH parameter ...

5.1CVSS7.5AI score0.02545EPSS
Exploits1References5
CVE
CVE
added 2006/08/30 1:0 a.m.36 views

CVE-2006-4448

CVE-2006-4448 concerns PHP remote file inclusion in Interact 2.2/2.x when register_globals is on. The vulnerable vectors are (1) CONFIG[BASE_PATH] via admin/autoprompter.php and includes/common.inc.php, and (2) CONFIG[LANGUAGE_CPATH] via admin/autoprompter.php. This allows arbitrary PHP code exec...

5.1CVSS7.6AI score0.02545EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2006/08/30 1:0 a.m.26 views

CVE-2006-4448

Multiple PHP remote file inclusion vulnerabilities in interact 2.2, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 CONFIGBASEPATH parameter in a admin/autoprompter.php and b includes/common.inc.php, and the 2 CONFIGLANGUAGECPATH parameter ...

7.5AI score0.02545EPSS
Exploits1References5
Rows per page
Query Builder