Apache 1.3/2.0.x Server Side Include Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5847/info Apache is reported to be vulnerable to cross site scripting attacks. This vulnerability is due to the SSI error pages of the webserver not being properly sanitized of malicious HTML code. Attacker-supplied HTML...

Dotproject 2.0 /includes/db_connect.php baseDir Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/16648/info Dotproject is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...

GuppY 2.4 - Remote File Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8769/info GuppY is prone to an issue that could allow a remote attacker to read or write to files on the vulnerable server. This issue presents itself in the tinymsg.php component of the software. The attacker could only...

Dotproject 2.0 /includes/session.php baseDir Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/16648/info Dotproject is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...

PHP Live Helper 1.17 Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20603/info PHP Live Helper is prone to multiple remote file-include vulnerabilities. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and execute it in the context of...

VihorDesign Index.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17227/info VihorDesign is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrar...

Bosdates 3.x/4.0 Payment.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19191/info Bosdates is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PH...

IDevSpot PHPHostBot 1.0 Index.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19084/info PHPHostBot is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious...

Advanced Electron Forum <= 1.0.6 - Remote Code Execution Vulnerability

No description provided by source. GulfTech Security Research September 20, 2008 Vendor : Electron Inc. URL : http://www.anelectron.com/ Version : AEF Forum = 1.0.6 Risk : Remote Code Execution Description: Advanced Electron Forum also known as AEF Forum is a full featured online forum system...

PhpBB BBRSS.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18432/info The bbrss plugin for PhpBB is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of...

Libra File Manager 1.18/2.0 'fileadmin.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31403/info Libra File Manager is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view...

RahnemaCo Page.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18435/info RahnemaCo is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the webserver...

Boonex 2.0 Dolphin Index.php Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21182/info Dolphin is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to have malicious PHP code execute in the context of the...

ATutor 1.5.3 - Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20634/info ATutor is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-sid...

Apache AXIS 1.0 Non-Existent WSDL Path Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23687/info Apache AXIS is prone to a path-information-disclosure vulnerability. Remote unauthorized attackers may be able to determine webserver directory paths. Information obtained may aid attackers in launching further...

phpMyNewsLetter 0.6.10 Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5886/info A vulnerability has been discovered in phpMyNewsLetter. Reportedly, it is possible to pass an attacker-specified file include location to a CGI paramter of the 'customize.php' script. This may allow an attacker ...

Check Point Connectra R62 '/Login/Login' Arbitrary Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36466/info Check Point Connectra is prone to an arbitrary-script-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in th...

JD-WordPress 2.0-1.0 RC 2 for Joomla wp-comments-post.php Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/19209/info JD-WordPress for Joomla is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...

UNAK-CMS 1.5 'connector.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30533/info UNAK-CMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view local file...

Psunami Bulletin Board 0.x Psunami.CGI Remote Command Execution Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/6607/info Psunami Bulletin Board is prone to a remote command execution vulnerability. Psunami does not sufficiently sanitize shell metacharacters from query string parameters. As a result, it may be possible for a remote...