BanPro Dms 1.0 - index.php Local File Inclusion

BanPro Dms 1.0 - index.php Local File Inclusion source: https://www.securityfocus.com/bid/27831/info BanPro DMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to...

BanPro Dms 1.0 - 'index.php' Local File Inclusion

source: https://www.securityfocus.com/bid/27831/info BanPro DMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to include local files in the context of the...

Dokeos 1.8.4 - mainadminsession_list.php?cmessage Cross-Site Scripting

Dokeos 1.8.4 - mainadminsessionlist.php?cmessage Cross-Site Scripting source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

Dokeos 1.8.4 - mainadmincourse_category.php?category Cross-Site Scripting

Dokeos 1.8.4 - mainadmincoursecategory.php?category Cross-Site Scripting source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

Dokeos 1.8.4 - whoisonline.php?id SQL Injection

Dokeos 1.8.4 - whoisonline.php?id SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue...

Dokeos 1.8.4 - maincalendarmyagenda.php?courseCode Cross-Site Scripting

Dokeos 1.8.4 - maincalendarmyagenda.php?courseCode Cross-Site Scripting source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

Dokeos 1.8.4 - mainmySpaceindex.php?tracking_list_coaches_column SQL Injection

Dokeos 1.8.4 - mainmySpaceindex.php?trackinglistcoachescolumn SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

Dokeos 1.8.4 - 'whoisonline.php?id' SQL Injection

source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...

Dokeos 1.8.4 - '/main/calendar/myagenda.php?courseCode' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...

Dokeos 1.8.4 - '/main/admin/course_category.php?category' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...

Dokeos 1.8.4 - '/main/admin/session_list.php?cmessage' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...

Dokeos 1.8.4 - 'main/inc/lib/events.lib.inc.php' Referer HTTP Header SQL Injection

source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can exploit these issues to execute...

PlutoStatus Locator 1.0pre alpha - index.php Local File Inclusion

PlutoStatus Locator 1.0pre alpha - index.php Local File Inclusion source: https://www.securityfocus.com/bid/27802/info PlutoStatus Locator is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using...

PlutoStatus Locator 1.0pre alpha - 'index.php' Local File Inclusion

source: https://www.securityfocus.com/bid/27802/info PlutoStatus Locator is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to include local files in the context of...

Joovili 2.1 - members_help.php Remote File Inclusion

Joovili 2.1 - membershelp.php Remote File Inclusion source: https://www.securityfocus.com/bid/27693/info Joovili is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file...

Joovili 2.1 - 'members_help.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/27693/info Joovili is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the contex...

XOOPS 2.0.18 Local File Inclusion / URL Redirecting Vulnerabilities

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-009 Application: XOOPS Versions Affected: XOOPS 2.0.18 Vendor URL: http://www.xoops.org/ Bugs: Local File Include,URL Redirecting phishing Exploits: YES Reported: 28.01.2008 Vendor response: 28.01.2008 Da...

[OPEN[DSECRG-08-010] VHD Web Pack 2.0 Local File Include

Digital Security Research Group DSecRG Advisory DSECRG-08-010 Application: VHD Web Pack 2.0 Versions Affected: VHD Web Pack 2.0 Vendor URL: http://www.divideconcept.net/index.php?page=vhdwebpack/index.php Bugs: Local File Include Exploits: YES Reported: 28.01.2008 Vendor response: NONE Date of...

VHD Web Pack 2.0 (index.php page) Local File Inclusion Vulnerability

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-010 Application: VHD Web Pack 2.0 Versions Affected: VHD Web Pack 2.0 Vendor URL: http://www.divideconcept.net/index.php?page=vhdwebpack/index.php Bugs: Local File Include Exploits: YES Reported: 28.01.20...

VHD Web Pack 2.0 (index.php page) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ==================================================================== VHD Web Pack 2.0 index.php page Local File Inclusion Vulnerability ==================================================================== Digital Security Research Group...