WebNews 1.4 - parser.php Remote File Inclusion (2)

WebNews 1.4 - parser.php Remote File Inclusion 2 source: https://www.securityfocus.com/bid/20239/info Web//News is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote...

Web//News 1.4 - 'parser.php' Remote File Inclusion (2)

source: https://www.securityfocus.com/bid/20239/info Web//News is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute i...

Back-End CMS 0.4.5 - search.php?includes_path Remote File Inclusion

Back-End CMS 0.4.5 - search.php?includespath Remote File Inclusion source: https://www.securityfocus.com/bid/20207/info Back-End CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an...

BBSNew 2.0.1 - index2.php Remote File Inclusion

BBSNew 2.0.1 - index2.php Remote File Inclusion source: https://www.securityfocus.com/bid/20204/info bbsNew is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary...

PHP_news 2.0 - creat_news_all.php?language Remote File Inclusion

PHPnews 2.0 - creatnewsall.php?language Remote File Inclusion source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to...

Plain Old WebServer 0.0.70.0.8 Firefox Extension - Directory Traversal

Plain Old WebServer 0.0.70.0.8 Firefox Extension - Directory Traversal source: https://www.securityfocus.com/bid/22502/info Plain Old Webserver is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an...

Quickblogger 1.4 - Remote File Inclusion

Quickblogger 1.4 - Remote File Inclusion source: https://www.securityfocus.com/bid/20210/info Quickblogger is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary...

Plain Old WebServer 0.0.7/0.0.8 Firefox Extension - Directory Traversal

source: https://www.securityfocus.com/bid/22502/info Plain Old Webserver is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to access sensitive information that could aid in further attack...

Quickblogger 1.4 - Remote File Inclusion

source: https://www.securityfocus.com/bid/20210/info Quickblogger is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary server-side script code on an affected computer...

PHP_news 2.0 - 'user_user.php?language' Remote File Inclusion

source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected...

PHP_news 2.0 - '/admin/catagory.php?language' Remote File Inclusion

source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected...

PHP_news 2.0 - '/admin/news.php?language' Remote File Inclusion

source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected...

Back-End CMS 0.4.5 - adminindex.php?includes_path Remote File Inclusion

Back-End CMS 0.4.5 - adminindex.php?includespath Remote File Inclusion source: https://www.securityfocus.com/bid/20207/info Back-End CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows ...

BandSite CMS 1.1 - shows_content.php Cross-Site Scripting

BandSite CMS 1.1 - showscontent.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to acce...

BandSite CMS 1.1 - signgbook_content.php Cross-Site Scripting

BandSite CMS 1.1 - signgbookcontent.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to...

BandSite CMS 1.1 - interview_content.php Cross-Site Scripting

BandSite CMS 1.1 - interviewcontent.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to...

BandSite CMS 1.1 - releases_content.php Cross-Site Scripting

BandSite CMS 1.1 - releasescontent.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to...

BandSite CMS 1.1 - pastshows_content.php Cross-Site Scripting

BandSite CMS 1.1 - pastshowscontent.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to...

BandSite CMS 1.1 - 'photo_content.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to access sensitive information, execute arbitrary server-side...

BandSite CMS 1.1 - 'pastshows_content.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to access sensitive information, execute arbitrary server-side...