Jupiter CMS 1.1.5 - index.php Remote File Inclusion

Jupiter CMS 1.1.5 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/19721/info Jupiter CMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files...

BigACE 1.8.2 - upload_form.php Remote File Inclusion

BigACE 1.8.2 - uploadform.php Remote File Inclusion source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP...

Alstrasoft Video Share Enterprise 4.x - MyajaxPHP.php Remote File Inclusion

Alstrasoft Video Share Enterprise 4.x - MyajaxPHP.php Remote File Inclusion source: https://www.securityfocus.com/bid/19724/info AlstraSoft Video Share Enterprise is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit thi...

BigACE 1.8.2 - item_main.php Remote File Inclusion

BigACE 1.8.2 - itemmain.php Remote File Inclusion source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP co...

Joomla! / Mambo Component Comprofiler 1.0 - 'class.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19725/info The Mambo and Joomla comcomprofiler component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious P...

Jetbox CMS 2.1 - 'Search_function.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19722/info Jetbox CMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...

Jupiter CMS 1.1.5 - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19721/info Jupiter CMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the...

BigACE 1.8.2 - 'upload_form.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver...

Alstrasoft Video Share Enterprise 4.x - 'MyajaxPHP.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19724/info AlstraSoft Video Share Enterprise is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code an...

BigACE 1.8.2 - 'admin.cmd.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver...

RedBlog 0.5 - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19658/info RedBLoG is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and execute it in the context...

Mambo Component EstateAgent 1.0.2 - MosConfig_absolute_path Remote File Inclusion

source: https://www.securityfocus.com/bid/19625/info The Mambo EstateAgent component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and...

PHProjekt Content Management Module 0.6.1 - Multiple Remote File Inclusions

PHProjekt Content Management Module 0.6.1 - Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/19628/info Multiple remote file-include vulnerabilities affect the Content Management module for PHProjekt because the application fails to properly sanitize user-supplied input...

Mambo Component Display MOSBot Manager - MosConfig_absolute_path Remote File Inclusion

Mambo Component Display MOSBot Manager - MosConfigabsolutepath Remote File Inclusion source: https://www.securityfocus.com/bid/19621/info The Mambo Display MOSBot Manager component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attack...

Mambo Component EstateAgent 1.0.2 - MosConfig_absolute_path Remote File Inclusion

Mambo Component EstateAgent 1.0.2 - MosConfigabsolutepath Remote File Inclusion source: https://www.securityfocus.com/bid/19625/info The Mambo EstateAgent component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit...

ToendaCMS 0.x1.0.x - TCMS_Administer Remote File Inclusion

ToendaCMS 0.x1.0.x - TCMSAdminister Remote File Inclusion source: https://www.securityfocus.com/bid/19626/info ToendaCMS is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...

DieselScripts Smart Traffic - index.php Remote File Inclusion

DieselScripts Smart Traffic - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/19630/info Smart Traffic is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remot...

Mambo Component - Display MOSBot Manager Remote File Inclusion Vuln

Aria-Security.net Advisory Discovered by: O.U.T.L.A.W www.Aria-security.net Gr33t to: A.U.R.A & Hessam-X & Cl0wn & DrtRp Software: Mambo Components ContXTD Attack method: Remote File Inclusion Source: ensure this file is being included by a parent file / defined 'VALIDMOS' or die 'Direct Access t...

Mambo Component - EstateAgent Remote File Inclusion

Aria-Security.net Advisory Discovered by: O.U.T.L.A.W www.Aria-security.net Gr33t to: A.U.R.A & Hessam-X & Cl0wn & DrtRp Software: Mambo Component - EstateAgent Attack method: Source: Don't allow direct linking defined 'VALIDMOS' or die 'Direct Access to this location is not allowed.' ; requireon...

DieselScripts Smart Traffic - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19630/info Smart Traffic is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...