Lucene search
K

6092 matches found

Exploit DB
Exploit DB
added 2007/01/04 12:0 a.m.39 views

Aratix 0.2.2b11 - '/inc/init.inc.php' Remote File Inclusion

+------------------------------------------------------------------------------------------- + Aratix +------------------------------------------------------------------------------------------- + Details: + Aratix inc/init.inc.php does not initialize the $currentpath variable before using it to ...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/01/02 12:0 a.m.40 views

Cacti cmd.php Multiple Parameter SQL Injection Arbitrary Command Execution

The remote host is running Cacti, a web-based, front end to RRDTool for network graphing. The version of Cacti on the remote host does not properly check to ensure that the 'cmd.php' script is being run from a commandline and fails to sanitize user-supplied input before using it in database...

7.5CVSS9.1AI score0.02443EPSS
Exploits0References4
OSV
OSV
added 2006/12/28 9:28 p.m.1 views

DEBIAN-CVE-2006-6799

SQL injection vulnerability in Cacti 0.8.6i and earlier, when registerargcargv is enabled, allows remote attackers to execute arbitrary SQL commands via the 1 second or 2 third arguments to cmd.php. NOTE: this issue can be leveraged to execute arbitrary commands since the SQL query results are...

7.5CVSS8.8AI score0.02443EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2006/12/22 12:0 a.m.30 views

3editor CMS 0.42 - 'index.php' Local File Inclusion

script Name: 3editor CMS index.php Local File Include Exploit Download:http://www.matteolucarelli.net/3editor/index.htm Author : Dr Max Virus Contact :[email protected] Bug & Problem In file index.php Let's Take a look; if !isset$GET'page' include'phplib/treeedit.php'; else...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/12/16 12:0 a.m.34 views

PHP-Proxima BB_Smilies.PHP本地文件包含漏洞

PHP-Proxima是一款基于PHP的WEB应用程序。 PHP-Proxima不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限查看系统文件内容。 问题是由于'BBSmilies.PHP'脚本对用户提交的'name'参数缺少过滤,提交包含多个"../"字符作为参数数据,可绕过WEB ROOT限制,以WEB进程权限查看系统文件内容。 PHP-Proxima 6.0 http://sourceforge.net/projects/phpproxima !/usr/bin/php -q -d shortopentag=on ? $devilteam = " :::::::...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/10 12:0 a.m.20 views

Exploit For Last Bo-blog version

No description provided by source. ? iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; $data ='nowonline=?php @eval$REQUESTorz;echo orz;die;?&1468108794=orz&-1844564458=orz'; $server =$argv1; $sitepath =$argv2; if$argc!=3 hr; echo" Uaget: boblog.php www.defence80.com /blog/\r\n"; echo" ...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2006/12/02 2:28 a.m.2 views

CVE-2006-6230

SQL injection vulnerability in vuBB 0.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter in a register action to index.php, a different vulnerability than CVE-2006-0962...

7.5CVSS6.3AI score0.02455EPSS
Exploits0References6
seebug.org
seebug.org
added 2006/12/01 12:0 a.m.37 views

Serendipity <= 1.0.3 (comment.php) Local File Include Exploit

No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/11/30 12:0 a.m.61 views

Serendipity <= 1.0.3 (comment.php) Local File Include Exploit

Exploit for unknown platform in category web applications ============================================================= Serendipity = 1.0.3 comment.php Local File Include Exploit ============================================================= ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/11/30 12:0 a.m.36 views

phpGraphy 0.9.12 - Privilege Escalation / Commands Execution

126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15...

7.4AI score
Exploits0
0day.today
0day.today
added 2006/11/24 12:0 a.m.48 views

Cahier de texte 2.0 (Database Backup/Source Disclosure) Remote Exploit

Exploit for unknown platform in category web applications ====================================================================== Cahier de texte 2.0 Database Backup/Source Disclosure Remote Exploit ====================================================================== !/usr/bin/perl INFORMATIONS...

7.1AI score
Exploits0
NVD
NVD
added 2006/11/22 12:7 a.m.26 views

CVE-2006-6042

PHP remote file inclusion vulnerability in core/editor.php in phpWebThings 1.5.2 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the editorinsertbottom parameter...

6.8CVSS7.3AI score0.05826EPSS
Exploits1References6
securityvulns
securityvulns
added 2006/11/22 12:0 a.m.303 views

ASPNuke &lt;= 0.80 &#40;register.asp&#41; Remote SQL Injection Vulnerability

Title : ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability Author : ajann S.Page : http://www.aspnuke.com D.Page : http://sourceforge.net/project/showfiles.php?groupid=92470 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ ASP Nuke...

1AI score
Exploits0
exploitpack
exploitpack
added 2006/11/21 12:0 a.m.16 views

Pearl Forums 2.4 - Multiple Remote File Inclusions

Pearl Forums 2.4 - Multiple Remote File Inclusions | \ | / | \ \ / | | | | | \ / | \ \ / / | | | | '| | |/| |/ \ / / \ / / | | '| | | / | | || | | | | | | | | \ / | | | | || \ \ |/|| || ||,//\ / ||| ,|/...

Exploits0
seebug.org
seebug.org
added 2006/11/20 12:0 a.m.30 views

ASPNuke &lt;= 0.80 (register.asp) Remote SQL Injection Vulnerability

No description provided by source. Title : ASPNuke = 0.80 register.asp Remote SQL Injection Vulnerability Author : ajann S.Page : http://www.aspnuke.com D.Page : http://sourceforge.net/project/showfiles.php?groupid=92470...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/11/20 12:0 a.m.19 views

Mini Open CMS <= 1.0.0 Local File Include Exploit

No description provided by source. DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] cod3d by Kacper -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM Patriots : - Leito...

7.1AI score
Exploits0
0day.today
0day.today
added 2006/11/18 12:0 a.m.36 views

phpWebThings <= 1.5.2 (editor.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ==================================================================== phpWebThings +------------------------------------------------------------------------------------------- + Details: + phpWebThings 1.5.2 core/editor.php does not...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/11/18 12:0 a.m.9 views

Oxygen 1.1.3 (O2PHP Bulletin Board) - SQL Injection

Oxygen 1.1.3 O2PHP Bulletin Board - SQL Injection !/usr/bin/php -------------------------------------------------------\n"; exit1; print "\n Please be patient max=736 hits...\n MD5: "; $host = !pregmatch"/^http://\S/",$argv1,$hwttp ? $argv1 : $hwttp1; $path = $argv2; $usid = intval$argv3; $tabl =...

Exploits0
Exploit DB
Exploit DB
added 2006/11/17 12:0 a.m.22 views

miniCWB 1.0.0 - &#039;contact.php&#039; Local File Inclusion

DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] cod3d by Kacper -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM Patriots : - Leito & Leon TomZen, Gelo, Ramzes, DMX,...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/11/08 12:0 a.m.39 views

[ECHO_ADV_57$2006]Soholaunch Pro &lt;=4.9 r36 Multiple Remote File Inclusion Vulnerability

/ / | | / // / | | Y / | / / /| / / / / / / .OR.ID ECHOADV57$2006 ----------------------------------------------------------------------------------------------- ECHOADV57$2006Soholaunch Pro =4.9 r36 Multiple Remote File Inclusion Vulnerability...

0.3AI score
Exploits0
Rows per page
Query Builder