LoveCMS 1.4 - 'step' Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/22675/info LoveCMS is prone to multiple input-validation vulnerabilities, including an arbitrary-file-upload issue, a remote file-include issue, a local file-include issue, and a cross-site scripting issue. An attacker can exploit these issues to steal...

Pyrophobia 2.1.3.1 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/22667/info Pyrophobia is prone to multiple input-validation vulnerabilities, including multiple local file-include issues and multiple cross-site scripting issues. An attacker can exploit these issues to steal cookie-based authentication credentials, view...

Pyrophobia 2.1.3.1 - Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/22667/info Pyrophobia is prone to multiple input-validation vulnerabilities, including multiple local file-include issues and multiple cross-site scripting issues. An attacker can exploit these issues to steal cookie-based authentication credentials, view...

Magic News Plus 1.0.2 - news.php?link_parameters Cross-Site Scripting

Magic News Plus 1.0.2 - news.php?linkparameters Cross-Site Scripting source: https://www.securityfocus.com/bid/22661/info Magic News Pro is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These issues include a remote...

Magic News Plus 1.0.2 - preview.php?PHP_script_path Remote File Inclusion

Magic News Plus 1.0.2 - preview.php?PHPscriptpath Remote File Inclusion source: https://www.securityfocus.com/bid/22661/info Magic News Pro is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These issues include a remote...

Magic News Plus 1.0.2 - n_layouts.php?link_parameters Cross-Site Scripting

Magic News Plus 1.0.2 - nlayouts.php?linkparameters Cross-Site Scripting source: https://www.securityfocus.com/bid/22661/info Magic News Pro is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These issues include a remote...

Magic News Plus 1.0.2 - 'news.php?&link_parameters' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22661/info Magic News Pro is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These issues include a remote file-include issue and two cross-site scripting vulnerabilities. An...

Meganoides News 1.1.1 - Include.php Remote File Inclusion

Meganoides News 1.1.1 - Include.php Remote File Inclusion source: https://www.securityfocus.com/bid/22589/info Meganoide's news is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PH...

CedStat 1.31 - 'index.php?hier' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22588/info CedStat is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of the webserver process. This issue affects...

Meganoide's News 1.1.1 - 'Include.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/22589/info Meganoide's news is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of the webserver process. This issue...

Directory traversal

Directory traversal vulnerability in the Plain Old Webserver POW add-on before 0.0.9 for Mozilla Firefox allows remote attackers to read arbitrary files via a .. dot dot in the URI...

EUVD-2007-0868

Directory traversal vulnerability in the Plain Old Webserver POW add-on before 0.0.9 for Mozilla Firefox allows remote attackers to read arbitrary files via a .. dot dot in the URI...

eXtreme File Hosting - Arbitrary .RAR File Upload

eXtreme File Hosting - Arbitrary .RAR File Upload source: https://www.securityfocus.com/bid/22498/info eXtreme File Hosting is prone to an arbitrary file-upload vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue could allow an attacker to upload and...

eXtreme File Hosting - Arbitrary '.RAR' File Upload

source: https://www.securityfocus.com/bid/22498/info eXtreme File Hosting is prone to an arbitrary file-upload vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue could allow an attacker to upload and execute arbitrary PHP script code in the context ...

Coppermine Photo Gallery 1.4.10 - Multiple LocalRemote File Inclusions

Coppermine Photo Gallery 1.4.10 - Multiple LocalRemote File Inclusions source: https://www.securityfocus.com/bid/22409/info Coppermine Photo Gallery is prone to multiple remote and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker can...

Coppermine Photo Gallery 1.4.10 - Multiple Local/Remote File Inclusions

source: https://www.securityfocus.com/bid/22409/info Coppermine Photo Gallery is prone to multiple remote and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary PHP code in the context of the...

PortailPHP 2 - mod_searchindex.php?chemin Remote File Inclusion

PortailPHP 2 - modsearchindex.php?chemin Remote File Inclusion source: https://www.securityfocus.com/bid/22381/info PortailPHP is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacke...

PortailPHP 2 - mod_newsindex.php?chemin Traversal Arbitrary File Access

PortailPHP 2 - modnewsindex.php?chemin Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/22381/info PortailPHP is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an...

PortailPHP 2 - mod_newsgoodies.php?chemin Remote File Inclusion

PortailPHP 2 - modnewsgoodies.php?chemin Remote File Inclusion source: https://www.securityfocus.com/bid/22381/info PortailPHP is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacke...

PortailPHP 2 - mod_newsindex.php?chemin Remote File Inclusion

PortailPHP 2 - modnewsindex.php?chemin Remote File Inclusion source: https://www.securityfocus.com/bid/22381/info PortailPHP is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker ...