Neuron News 1.0 Local file inclusion (index.php)

+++++++++++++++++++++++++++++++++++++++++++ Neuron News 1.0 Local File inclusion +++++++++++++++++++++++++++++++++++++++++++ Founded By Seph1roth http://blackroots.it Vulnerable Script Download: http://downloads.localhost.be/scripts/neuronnews.zip Bug : http://TARGET/PATH/index.php?q=Local File00...

CVE-2007-5050

The CVE-2007-5050 entry describes a directory traversal in Neuron News 1.0: index.php vulnerable to a ".." in the q parameter, permitting remote attackers to include and execute arbitrary local files. Affected software: Neuron News 1.0 (PHP). Root cause is improper input validation on q that perm...

neuron news 1.0 - index.php?q Local File Inclusion

neuron news 1.0 - index.php?q Local File Inclusion \|/// \ - - // Y! Underground Group @ @ ----oOOo---oOOo-------------------------------------------------- Portal : Neuron News 1.0 Download : http://downloads.localhost.be/scripts/neuronnews.zip Author : Dj7xpl HomePage : http://r00t.ir /...

neuron news 1.0 (index.php q) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ================================================================ neuron news 1.0 index.php q Local File Inclusion Vulnerability ================================================================ \|/// \ - - // Y! Underground Group @ @...

neuron news 1.0 - 'index.php?q' Local File Inclusion

\|/// \ - - // Y! Underground Group @ @ ----oOOo---oOOo-------------------------------------------------- Portal : Neuron News 1.0 Download : http://downloads.localhost.be/scripts/neuronnews.zip Author : Dj7xpl HomePage : http://r00t.ir / http://Dj7xpl.2600.ir Type : Local File Inclusion...

neuron news 1.0 (index.php q) Local File Inclusion Vulnerability

No description provided by source. |/// \ - - // Y! Underground Group @ @ ----oOOo---oOOo-------------------------------------------------- Portal : Neuron News 1.0 Download : http://downloads.localhost.be/scripts/neuronnews.zip Author : Dj7xpl HomePage : http://r00t.ir / http://Dj7xpl.2600.ir...

Unrestricted file upload

Unrestricted file upload vulnerability in admin/pages/blog-add.php in Neuron Blog 1.1 allows remote attackers to upload and execute arbitrary PHP files in uploads/...

CVE-2007-4371

Unrestricted file upload vulnerability in admin/pages/blog-add.php in Neuron Blog 1.1 allows remote attackers to upload and execute arbitrary PHP files in uploads/...

CVE-2007-4371

CVE-2007-4371 : Unrestricted file upload vulnerability in Neuron Blog 1.1, fixed in admin/pages/blog-add.php, allows remote attackers to upload and execute arbitrary PHP files in the uploads/ directory. The issue arises from insufficient validation when handling uploads, enabling an attacker to p...

Neuron Blog Admin Permission Bypass and Remote File Upload Vulnerability

Neuron Blog Admin Permission Bypass and Remote File Upload Vulnerability ------------------------------------------------------------------------ Script : Neuron Blog Version : 1.1 Site : http://dev.localhost.be/?q=detail-script&id=11 Founder : Rizgar Contact : [email protected] and...

CVE-2006-6993

Multiple SQL injection vulnerabilities in pages/addcomment2.php in Neuron Blog 1.1 allow remote attackers to inject arbitrary SQL commands via the 1 commentname, 2 commentmail, 3 commentwebsite, and 4 comment parameters. NOTE: the provenance of this information is unknown; the details are obtaine...

CVE-2006-6993

Multiple SQL injection vulnerabilities in pages/addcomment2.php in Neuron Blog 1.1 allow remote attackers to inject arbitrary SQL commands via the 1 commentname, 2 commentmail, 3 commentwebsite, and 4 comment parameters. NOTE: the provenance of this information is unknown; the details are obtaine...

CVE-2006-6993

CVE-2006-6993 concerns multiple SQL injection flaws in Neuron Blog 1.1, specifically in pages/addcomment2.php. The vulnerabilities allow remote attackers to inject arbitrary SQL via the (1) commentname, (2) commentmail, (3) commentwebsite, or (4) comment parameters, leading to potential data inte...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in dev Neuron Blog 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 name and 2 website parameters...

CVE-2006-1899

Multiple cross-site scripting XSS vulnerabilities in dev Neuron Blog 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 name and 2 website parameters...

CVE-2006-1899

CVE-2006-1899 affects dev Neuron Blog 1.1 and earlier, with multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) website parameters. The issue stems from insufficient input sanitization in these fields, ena...

CVE-2006-1899

Multiple cross-site scripting XSS vulnerabilities in dev Neuron Blog 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 name and 2 website parameters...

Neuron Blog <= 1.1 XSS

==================== Discovered by: Qex Date: 17 April 2006 ==================== Add comment :- name: XSS e-mail: website: XSS...