5286 matches found
Open Digital Assets Repository System 1.0.2 - Remote File Inclusion
Open Digital Assets Repository System 1.0.2 - Remote File Inclusion source: https://www.securityfocus.com/bid/29881/info Open Digital Assets Repository System ODARS is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploi...
Open Digital Assets Repository System 1.0.2 - Remote File Inclusion
source: https://www.securityfocus.com/bid/29881/info Open Digital Assets Repository System ODARS is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this issue to execute malicious PHP code in the context of the...
Aprox CMS Engine 5.1.0.4 - Local File Inclusion
Aprox CMS Engine 5.1.0.4 - Local File Inclusion 01010111 01001001 01010010 01000101 01000100 01010011 - 01000101 01000011 01010101 01010010 01001001 01010100 - 01011001 ADVISORY: APROX CMS ENGINE V5.1.0.4 LOCAL FILE INCLUSION LFI || 0x00: ABOUT ME || 0x01: DATELINE || 0x02: INFORMATION || 0x03:...
GL-SH Deaf Forum 6.5.5 - Cross-Site Scripting Arbitrary File Upload
GL-SH Deaf Forum 6.5.5 - Cross-Site Scripting Arbitrary File Upload source: https://www.securityfocus.com/bid/29849/info GL-SH Deaf Forum is prone to a cross-site scripting vulnerability and an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. An...
GL-SH Deaf Forum 6.5.5 - Cross-Site Scripting / Arbitrary File Upload
source: https://www.securityfocus.com/bid/29849/info GL-SH Deaf Forum is prone to a cross-site scripting vulnerability and an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issue to execute arbitrary...
DSA-1596-1 typo3-src - several vulnerabilities
Bulletin has no description...
cPanel 11.21 - wwwact Privilege Escalation
cPanel 11.21 - wwwact Privilege Escalation source: https://www.securityfocus.com/bid/29277/info cPanel is prone to a remote privilege-escalation vulnerability because of an unspecified error. Successfully exploiting this issue allows remote attackers to gain administrative privileges to the...
cPanel 11.21 - 'wwwact' Privilege Escalation
source: https://www.securityfocus.com/bid/29277/info cPanel is prone to a remote privilege-escalation vulnerability because of an unspecified error. Successfully exploiting this issue allows remote attackers to gain administrative privileges to the affected application and execute malicious PHP...
Digital Hive 2.0 - base_include.php Local File Inclusion
Digital Hive 2.0 - baseinclude.php Local File Inclusion source: https://www.securityfocus.com/bid/29255/info Digital Hive is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal...
Digital Hive 2.0 - 'base_include.php' Local File Inclusion
source: https://www.securityfocus.com/bid/29255/info Digital Hive is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view local files in the context of the...
BlogPHP 2.0 - index.php Multiple Cross-Site Scripting Vulnerabilities
BlogPHP 2.0 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29133/info BlogPHP is prone to multiple input-validation vulnerabilities, including a cross-site scripting issue, an HTML-injection issue, and a cookie-manipulation issue. Attackers can...
BlogPHP 2.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/29133/info BlogPHP is prone to multiple input-validation vulnerabilities, including a cross-site scripting issue, an HTML-injection issue, and a cookie-manipulation issue. Attackers can exploit these issues to execute arbitrary script code in the context ...
Forum Rank System 6 - settings[locale] Multiple Local File Inclusions
Forum Rank System 6 - settingslocale Multiple Local File Inclusions source: https://www.securityfocus.com/bid/29077/info Forum Rank System is prone to local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using...
Forum Rank System 6 - 'settings['locale']' Multiple Local File Inclusions
source: https://www.securityfocus.com/bid/29077/info Forum Rank System is prone to local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal strings to view files local scripts in the conte...
QTO File Manager 1.0 - qtofm.php Arbitrary File Upload
QTO File Manager 1.0 - qtofm.php Arbitrary File Upload source: https://www.securityfocus.com/bid/29072/info QTO File Manager is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code because the application fails to sanitize user-supplied input. An attacker c...
QTO File Manager 1.0 - 'qtofm.php' Arbitrary File Upload
source: https://www.securityfocus.com/bid/29072/info QTO File Manager is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code because the application fails to sanitize user-supplied input. An attacker can leverage this issue to execute arbitrary code on an...
SiteXS CMS 0.1.1 - 'upload.php' Arbitrary File Upload
source: https://www.securityfocus.com/bid/29029/info SiteXS is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code because the application fails to sanitize user-supplied input. An attacker can leverage this issue to execute arbitrary code on an affected...
[SECURITY] Fedora 8 Update: lighttpd-1.4.19-4.fc8
Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...
Siteman 2.0.x2 - module Cross-Site Scripting Local File Inclusion
Siteman 2.0.x2 - module Cross-Site Scripting Local File Inclusion source: https://www.securityfocus.com/bid/28943/info Siteman is prone to a local file-include vulnerability and a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacke...
Siteman 2.0.x2 - 'module' Cross-Site Scripting / Local File Inclusion
source: https://www.securityfocus.com/bid/28943/info Siteman is prone to a local file-include vulnerability and a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this as a cross-site scripting issue to execute...