5285 matches found
Subberz Lite - UserFunc Remote File Inclusion
source: https://www.securityfocus.com/bid/18990/info SubberZLite is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...
FlatNuke 2.5.7 - index.php Remote File Inclusion
FlatNuke 2.5.7 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/18966/info FlatNuke is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include...
PHP Event Calendar 1.4 - calendar.php Remote File Inclusion
PHP Event Calendar 1.4 - calendar.php Remote File Inclusion source: https://www.securityfocus.com/bid/18965/info PHP Event Calendar is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit...
FlatNuke 2.5.7 - 'index.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18966/info FlatNuke is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP...
PHP Event Calendar 1.4 - 'calendar.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18965/info PHP Event Calendar is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
Mambo Componen phpBB 1.2.4 - Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/18914/info phpBB for Mambo is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...
RW::Download - stats.php Remote File Inclusion
RW::Download - stats.php Remote File Inclusion source: https://www.securityfocus.com/bid/18901/info RW::Download is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containi...
RW::Download - 'stats.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18901/info RW::Download is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the...
Extcalendar 2.0 - Extcalendar.php Remote File Inclusion
Extcalendar 2.0 - Extcalendar.php Remote File Inclusion source: https://www.securityfocus.com/bid/18876/info ExtCalendar is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue ...
Extcalendar 2.0 - 'Extcalendar.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18876/info ExtCalendar is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious P...
Blog:CMS 4.1 - 'Thumb.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18837/info Blog:CMS is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PH...
Blog:CMS 4.1 - Thumb.php Remote File Inclusion
Blog:CMS 4.1 - Thumb.php Remote File Inclusion source: https://www.securityfocus.com/bid/18837/info Blog:CMS is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include a...
[Full-disclosure] phpSysInfo arbitrary file identification
phpSysInfo is a popular webscript for displaying stats about a webserver available from http://phpsysinfo.sourceforge.net/ with 365012 downloads to date. A vulnerability which allows an attacker to identify if a file exists on the remote system has been identified. By supplying a directory...
Randshop 0.9.3/1.2 - 'index.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18809/info Randshop is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PH...
Randshop 0.9.31.2 - index.php Remote File Inclusion
Randshop 0.9.31.2 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/18809/info Randshop is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to...
free QBoard 1.1 - 'contact.php?qb_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to execute arbitrary server-side script code on an affected...
free QBoard 1.1 - 'features.php?qb_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to execute arbitrary server-side script code on an affected...
free QBoard 1.1 - 'about.php?qb_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to execute arbitrary server-side script code on an affected...
free QBoard 1.1 - contact.php?qb_path Remote File Inclusion
free QBoard 1.1 - contact.php?qbpath Remote File Inclusion source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to...
free QBoard 1.1 - index.php?qb_path Remote File Inclusion
free QBoard 1.1 - index.php?qbpath Remote File Inclusion source: https://www.securityfocus.com/bid/18788/info The free QBoard script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include...