pMachine 1.0/2.x - Multiple Script 'sfx' Full Path Disclosures

source: https://www.securityfocus.com/bid/7980/info It has been reported that pMachine is prone to remote a patch disclosure vulnerability when accessing various scripts. When a request is made for a target PHP script, possibly requiring a blank URI parameter, pMachine is said to throw an...

DEBIAN-CVE-2002-0654

Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to determine the full pathname of the server via 1 a request for a .var file, which leaks the pathname in the resulting error message, or 2 via an error message that occurs when a script child process cannot be invoked...

Phorum 3.x - PHP Configuration Disclosure

source: https://www.securityfocus.com/bid/1985/info Phorum is a PHP based web forums package. Due to an error in the implementation of forum selection in administrative scripts, any user can view the any PHP script on the target host. This is due to user-supplied input being referenced as a...

Проблемы с Piranha под RH Linux

Во-первых по-умолчанию имеется простой пароль "черного хода". Во вторых ошибки в скриптах позволяют выполнить любое приложение с привилегиями сервера...

netscape.4.07.pref.txt

Date: Mon, 19 Oct 1998 16:25:26 +0200 From: Themag00ru To: [email protected] Subject: Netscape Communicator 4.07 - Prefs.js Reset I dont know if this is already known or not. Anyway if you put alt+0130 characters into the URL, netscape will write it into the url history in prefs.js example:...