Blue Utopia - index.php Local File Inclusion

Blue Utopia - index.php Local File Inclusion source: https://www.securityfocus.com/bid/33851/info Blue Utopia is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local...

Blue Utopia - 'index.php' Local File Inclusion

source: https://www.securityfocus.com/bid/33851/info Blue Utopia is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local files in the context of the webserver process...

lastRSS autoposting bot MOD 0.1.3 - phpbb_root_path Remote File Inclusion

lastRSS autoposting bot MOD 0.1.3 - phpbbrootpath Remote File Inclusion source: https://www.securityfocus.com/bid/33843/info lastRSS autoposting bot MOD is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit...

lastRSS autoposting bot MOD 0.1.3 - 'phpbb_root_path' Remote File Inclusion

source: https://www.securityfocus.com/bid/33843/info lastRSS autoposting bot MOD is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP co...

Fedora Update for mantis FEDORA-2008-0856

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2008-0856 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Fedora Update for mantis FEDORA-2008-6647

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2008-6647 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Fedora Update for mantis FEDORA-2008-6657

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2008-6657 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Fedora Update for mantis FEDORA-2008-8925

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2008-8925 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Fedora Update for mantis FEDORA-2008-0796

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2008-0796 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Debian DSA-1723-1 : phpmyadmin - insufficient input sanitising

Michael Brooks discovered that phpMyAdmin, a tool to administrate MySQL over the web, performs insufficient input sanitising allowing a user assisted remote attacker to execute code on the webserver. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

[SECURITY] [DSA 1723-1] New phpmyadmin packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1723-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 11, 2009 http://www.debian.org/security/faq -...

CVE-2002-2428

webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an HTTP POST request that contains a Content-Length header but no body data...

CVE-2002-2427

The security handler in GoAhead WebServer before 2.1.1 allows remote attackers to bypass authentication and obtain access to protected web content via "an extra slash in a URL," a different vulnerability than CVE-2002-1603...

CVE-2002-2430

GoAhead WebServer before 2.1.1 allows remote attackers to cause a denial of service CPU consumption by performing a socket disconnect to terminate a request before it has been fully processed by the server...

CVE-2002-2431

Unspecified vulnerability in GoAhead WebServer before 2.1.4 allows remote attackers to cause "incorrect behavior" via unknown "malicious code," related to incorrect use of the socketInputBuffered function by sockGen.c...

CVE-2003-1569

GoAhead WebServer before 2.1.5 on Windows 95, 98, and ME allows remote attackers to cause a denial of service daemon crash via an HTTP request with a 1 con, 2 nul, 3 clock$, or 4 config$ device name in a path component, different vectors than CVE-2001-0385...

CVE-2002-2429

webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service daemon crash via an HTTP POST request that contains a negative integer in the Content-Length header...

CVE-2003-1568

GoAhead WebServer before 2.1.6 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an invalid URL, related to the websSafeUrl function...

CVE-2003-1568

GoAhead WebServer before 2.1.6 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an invalid URL, related to the websSafeUrl function...

CVE-2002-2428

webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an HTTP POST request that contains a Content-Length header but no body data...