5291 matches found
BigACE 1.8.2 download.cmd.php GLOBALS Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute i...
Embedthis Goahead Webserver 3.1.3-0 - Multiple Vulnerabilities
No description provided by source. Title: Embedthis Goahead Webserver multiple DoS vulnerabilities. Author: 0in Maksymilian Motyl Date: 18.02.2014 Version: 3.1.3-0 Software Link: http://embedthis.com/products/goahead/ Download: https://github.com/embedthis/goahead Tested on: Linux x32 Description...
BigACE 1.8.2 admin.cmd.php GLOBALS Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute i...
AlstraSoft Video Share Enterprise 4.x MyajaxPHP.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19724/info AlstraSoft Video Share Enterprise is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote fil...
Struts <= 2.0.11 Multiple Directory Traversal Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/32104/info Struts is prone to multiple directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues using directory-traversal strings...
DoceboLMS 2.0.x/3.0.x,DoceboKMS 3.0.3,Docebo CMS 3.0.x Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/18109/info Docebo is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include an...
SiteBar <= 3.3.8 translator.php dir Parameter Traversal Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include vulnerability - Multiple...
Symantec Messaging Gateway 9.5.3-3 Arbitrary File Download
No description provided by source. ======= Summary ======= Name: Symantec Messaging Gateway - Arbitrary file download is possible with a crafted URL authenticated Release Date: 30 November 2012 Reference: NGS00266 Discoverer: Ben Williams [email protected] Vendor: Symantec Vendor...
symantec mail-gear 1.0 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/827/info Mail-Gear, a multi-purpose filtering email server, includes a webserver for remote administration and email retrieval. This webserver is vulnerable to the '../' directory traversal attack. By including the string...
DoceboLMS 2.0.x Lang Parameter Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/18110/info DoceboLMS is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include...
ModuleBased CMS Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/19754/info ModuleBased CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...
Multiple HTTP Server - Low Bandwidth Denial of Service (2)
No description provided by source. ?php / DOS for the vulnerbility at http://isc.sans.org/diary.html?storyid=6601 I wrote it in PHP because I find it funny to make PHP attack apache... I set it at 200 processes and it kill my test servers pretty quick. have fun kiddiez... greetz: m1m1, t4dp0le,...
Web//News 1.4 Parser.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20239/info Web//News is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containin...
SiteBar <= 3.3.8 command.php Modify User Action uid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include vulnerability - Multiple...
Savant Webserver 3.1 Malformed Content-Length Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5707/info Savant Webserver is prone to a denial of service attack, when processing a negative integer located in a users Content-Length value. It should be noted that versions below 3.1 may also be vulnerable to this issu...
PHPAlbum 0.2.2/0.2.3/4.1 Language.PHP File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17526/info phpAlbum is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary remote PHP code on an affected compute...
OpenOffice 2.2 Writer Component Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24186/info The OpenOffice 'Writer' component is prone to a remote denial-of-service vulnerability. Successful exploits may allow remote attackers to cause denial-of-service conditions on the webserver running the affected...
AlstraSoft Template Seller Config[Template_Path] Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/19769/info AlstraSoft Template Seller is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an...
MXBB Profile Control Panel 0.91c Module Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21520/info The mxBB profile Control Panel module is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...
BlogPHP 2.0 - index.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29133/info BlogPHP is prone to multiple input-validation vulnerabilities, including a cross-site scripting issue, an HTML-injection issue, and a cookie-manipulation issue. Attackers can exploit these issues to execute...