Directory traversal

Directory traversal vulnerability in index.php in Pecio CMS 1.1.5 allows remote attackers to read arbitrary files via a .. dot dot in the language parameter...

CVE-2008-6724

Cross-site scripting XSS vulnerability in index.pl in Perl Nopaste 1.0 allows remote attackers to inject arbitrary web script or HTML via the language parameter. NOTE: some of these details are obtained from third party information...

Cross site scripting

Cross-site scripting XSS vulnerability in index.pl in Perl Nopaste 1.0 allows remote attackers to inject arbitrary web script or HTML via the language parameter. NOTE: some of these details are obtained from third party information...

CVE-2008-6724

CVE-2008-6724 is a cross-site scripting (XSS) vulnerability in index.pl of Perl Nopaste 1.0, allowing remote attackers to inject arbitrary web script or HTML through the language parameter. The available sources confirm the vulnerable component is index.pl in Perl Nopaste 1.0 and the issue is XSS...

Directory traversal

Directory traversal vulnerability in login.php in OneOrZero Helpdesk 1.6.5.7 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the defaultlanguage parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in seeurl.php in Xavier Flahaut URLStreet 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 language, 2 order, and 3 filter parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

CVE-2008-6205

CVE-2008-6205: XSS in seeurl.php of Xavier Flahaut URLStreet 1.0, with vulnerability in parameters (language, order, filter) allowing injection of arbitrary script/HTML. The problem is documented by NVD/NIST; no explicit remediation or patch details are provided in the connected documents. The CV...

CVE-2009-0529

Cross-site scripting XSS vulnerability in index.php in SnippetMaster Webpage Editor 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the language parameter...

CVE-2009-0529

Cross-site scripting XSS vulnerability in index.php in SnippetMaster Webpage Editor 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the language parameter...

CVE-2008-6083

Directory traversal vulnerability in header.php in TXTshop beta 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the language parameter...

PHPAuctionSystem - Multiple Remote File Inclusions

»=======================================================================================================-X » » » PHPAuctionSystem Multiple Remote File Inclusion Vulnerability » » » » ======= ------d-------m------ ==== ==== » » || = | |o o| | || || || » » || = |||| || || » » =======...

PHPAuctionSystem - Multiple Remote File Inclusions

PHPAuctionSystem - Multiple Remote File Inclusions »=======================================================================================================-X » » » PHPAuctionSystem Multiple Remote File Inclusion Vulnerability » » » » ======= ------d-------m------ ==== ==== » » || = | |o...

DEBIAN-CVE-2008-5587

Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when registerglobals is enabled, allows remote attackers to read arbitrary files via a .. dot dot in the language parameter to index.php...

PunBB language Paramater Local File Include Vulnerability

The remote web server contains a PHP script that is affected by a local file include issue. Description: The version of PunBB installed on the remote host fails to sanitize input to the 'language' parameter before storing it in the 'register.php' script as a user's preferred language setting. By...

CVE-2008-3371

Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter...

Directory traversal

Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter...

CVE-2008-3371

CVE-2008-3371 - Vulnerability in TalkBack 2.3.5 and earlier than 2.3.6.2 where the installer’s language parameter in install/help.php can be manipulated to perform directory traversal, allowing remote inclusion and execution of local files. The issue is a classic local file inclusion due to impro...

CVE-2008-2985

Directory traversal vulnerability in loadlanguage.php in CMReams CMS 1.3.1.1 Beta 2, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the pagelanguage parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in admin/objects/objimage.php in TinX/cms 1.1 allows remote attackers to inject arbitrary web script or HTML via the language parameter...

CVE-2008-2975

Cross-site scripting XSS vulnerability in admin/objects/objimage.php in TinX/cms 1.1 allows remote attackers to inject arbitrary web script or HTML via the language parameter...