ovidentia 5.6.x/5.8 options.php babInstallPath Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...

MyBloggie 2.1.x Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18241/info MyBloggie is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include...

AltaVista Search Intranet 2.0 b/2.3 A Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/896/info The AltaVista Search engine sets up a webserver at port 9000 to listen for search queries. The main search function will accept a single '../' string in the query, providing access to all documents in the 'http'...

PHP-Calendar 1.1 update08.php configfile Parameter Traversal Local File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/37450/info PHP-Calendar is prone to multiple remote and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to execute arbitrary...

Michael Lamont Savant WebServer 2.0 NULL Character DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/897/info The Savant Webserver cannot properly handle null characters in a GET request. If it encounters one, it will crash. The failure is logged in savantpath\Logs\general.txt http ://target/%00/...

Community CMS 0.1 'include.php' Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30275/info Community CMS is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this issue to execute malicious PHP code in the context of the...

PHPBB 2.0.x Template.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18255/info The phpBB application is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include a...

i-Gallery 3.4 igallery.ASP Remote Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26348/info i-Gallery is prone to a remote information-disclosure vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized remote user to view arbitrary local...

ListMessenger 0.9.3 LM_Path Parameter Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19014/info ListMessenger is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an...

ISearch 2.16 ISEARCH_PATH Parameter Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20401/info iSearch is affected by a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side script cod...

Calendar Module 1.5.7 For Mambo Com_Calendar.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19027/info The Calendar module for Mambo is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to...

Twilight WebServer 1.3.3 .0 GET Request Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8181/info It has been reported that Twilight WebServer may be prone to a remote buffer overflow vulnerability. The problem may be present due to a lack of bounds checking performed on incoming GET requests. Arbitrary code...

CyBoards PHP Lite 1.21/1.25 Common.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18272/info CyBoards PHP Lite is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the...

BanPro DMS 1.0 'index.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27831/info BanPro DMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to include local...

Exponent CMS 0.96.5/ 0.96.6 iconspopup.php icodir Variable Traversal Arbitrary Directory Listing

No description provided by source. source: http://www.securityfocus.com/bid/23574/info Exponent CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

ironwebmail <= 6.1.1 - Directory Traversal information disclosure vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20436/info IronWebMail is prone to a remote information-disclosure vulnerability because the application fails to properly sanitize user-supplied input. Exploiting this issue allows remote, unauthenticated attackers to...

N/X Web Content Management System 2002 Prerelease 1 menu.inc.php c_path Parameter RFI

No description provided by source. source: http://www.securityfocus.com/bid/6500/info N/X Web Content Management System is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. An attacker may exploit this by supplying a path to a maliciously...

I-RATER Platinum Common.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17623/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an...

Bookmark4U 2.0 inc/config.php env[include_prefix] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...

SPIP 1.8.2 Spip_RSS.PHP Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16556/info SPIP is prone to a remote command-execution vulnerability. This is due to a lack of proper sanitization of user-supplied input. An attacker can exploit this issue to execute arbitrary remote PHP commands on an...