EasyPHPCalendar 6.1.5/6.2.x - 'datePicker.php?serverPath' Remote File Inclusion

source: https://www.securityfocus.com/bid/14131/info EasyPHPCalendar is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to execute arbitrary server-si...

MWChat 6.7 - 'Start_Lobby.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/13849/info MWChat is affected by a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side script code on an affect...

MWChat 6.7 - Start_Lobby.php Remote File Inclusion

MWChat 6.7 - StartLobby.php Remote File Inclusion source: https://www.securityfocus.com/bid/13849/info MWChat is affected by a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

GrayCMS 1.1 - 'error.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/13381/info GrayCMS is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side script code on an affected...

phpCoin 1.2 - auxpage.php?page Traversal Arbitrary File Access

phpCoin 1.2 - auxpage.php?page Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/12917/info Multiple remote input validation vulnerabilities affect phpCoin. Multiple SQL injection vulnerabilities have been reported. An attacker may leverage these issues to manipulate and...

PHPOpenChat 2.3.4/3.0.1 - 'poc.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/12817/info PHPOpenChat is prone to multiple remote file-include vulnerabilities. An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the privileges of the webserver process. This may facilitate...

PHPOpenChat 2.3.43.0.1 - poc.php Remote File Inclusion

PHPOpenChat 2.3.43.0.1 - poc.php Remote File Inclusion source: https://www.securityfocus.com/bid/12817/info PHPOpenChat is prone to multiple remote file-include vulnerabilities. An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the...

Stadtaus.Com PHP Form Mail Script 2.3 - Remote File Inclusion

Stadtaus.Com PHP Form Mail Script 2.3 - Remote File Inclusion source: https://www.securityfocus.com/bid/12735/info PHP Form Mail Script is prone to remote file include vulnerability. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the...

phpMyAdmin 2.6 - Multiple Local File Inclusions

phpMyAdmin 2.6 - Multiple Local File Inclusions source: https://www.securityfocus.com/bid/12645/info phpMyAdmin is affected by multiple local file include vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP...

phpMyAdmin 2.6 - Multiple Local File Inclusions

source: https://www.securityfocus.com/bid/12645/info phpMyAdmin is affected by multiple local file include vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'include', 'require', 'require-once', or similar...

Mambo Open Source 4.5.1 (1.0.9) - Cross-Site Scripting

Mambo Open Source 4.5.1 1.0.9 - Cross-Site Scripting source: https://www.securityfocus.com/bid/11220/info Mambo open source is reportedly affected by multiple input validation vulnerabilities. These issues are due to a failure of the application to properly validate user-supplied URI parameters. ...

PerlDesk < 2 pdesk.cgi lang Parameter Traversal Server-Side Script Execution

Binary data 2278.prm...

PerlDesk Language Variable - Server-Side Script Execution

source: https://www.securityfocus.com/bid/11160/info It is reported that PerlDesk is susceptible to a server-side script execution vulnerability. This vulnerability may be exploited to execute the contents of Perl scripts contained on the affected server filesystem. This will execute script code ...

mod_security buffer overflow

Heap overflow if large amount of data is generated as a single chunk in server side script...

Microsoft IIS 4.0/5.0 - Source Fragment Disclosure

source: https://www.securityfocus.com/bid/1488/info Microsoft IIS 4.0 and 5.0 can be made to disclose fragments of source code which should otherwise be inaccessible. This is done by appending "+.htr" to a request for a known .asp or .asa, .ini, etc file. Appending this string causes the request ...