5285 matches found
Glossaire 1.7 - Remote File Inclusion
Glossaire 1.7 - Remote File Inclusion source: https://www.securityfocus.com/bid/18792/info Glossaire is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary...
free QBoard 1.1 - faq.php?qb_path Remote File Inclusion
free QBoard 1.1 - faq.php?qbpath Remote File Inclusion source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to...
free QBoard 1.1 - 'history.php?qb_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to execute arbitrary server-side script code on an affected...
Glossaire 1.7 - Remote File Inclusion
source: https://www.securityfocus.com/bid/18792/info Glossaire is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP...
free QBoard 1.1 - 'index.php?qb_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/18788/info The free QBoard script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
free QBoard 1.1 - 'faq.php?qb_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to execute arbitrary server-side script code on an affected...
Plume CMS 1.0.4 - 'search.php?_PX_config[manager_path]' Remote File Inclusion
source: https://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to execute arbitrary server-side script code on an affected...
SturGeoN Upload - Arbitrary File Upload
SturGeoN Upload - Arbitrary File Upload source: https://www.securityfocus.com/bid/18764/info SturGeoN Upload is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may...
SturGeoN Upload - Arbitrary File Upload
source: https://www.securityfocus.com/bid/18764/info SturGeoN Upload is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may facilitate unauthorized access or privilege...
MF Piadas 1.0 - 'admin.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18679/info MF Piadas is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...
MF Piadas 1.0 - admin.php Remote File Inclusion
MF Piadas 1.0 - admin.php Remote File Inclusion source: https://www.securityfocus.com/bid/18679/info MF Piadas is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containi...
CrisoftRicette 1.0 - Cookbook.php Remote File Inclusion
CrisoftRicette 1.0 - Cookbook.php Remote File Inclusion source: https://www.securityfocus.com/bid/18674/info CrisoftRicette is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this iss...
CrisoftRicette 1.0 - 'Cookbook.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18674/info CrisoftRicette is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
eNpaper1 - Root_Header.php Remote File Inclusion
eNpaper1 - RootHeader.php Remote File Inclusion source: https://www.securityfocus.com/bid/18649/info eNpaper1 is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input to the application. An attacker may leverage this issue to have an arbitrary remo...
eNpaper1 - 'Root_Header.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18649/info eNpaper1 is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input to the application. An attacker may leverage this issue to have an arbitrary remote file containing malicious script code execute...
PHP Blue Dragon CMS 2.9.1 - Multiple Remote File Inclusions
PHP Blue Dragon CMS 2.9.1 - Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18609/info PHP Blue Dragon CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage thes...
PHP Blue Dragon CMS 2.9.1 - Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/18609/info PHP Blue Dragon CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to have an arbitrary remote file containing malicio...
Eduha Meeting - index.php Arbitrary File Upload
Eduha Meeting - index.php Arbitrary File Upload source: https://www.securityfocus.com/bid/18499/info Eduha Meeting is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This m...
Singapore 0.9.x0.10 - index.php?template Cross-Site Scripting
Singapore 0.9.x0.10 - index.php?template Cross-Site Scripting source: https://www.securityfocus.com/bid/18518/info singapore gallery is prone to directory-traversal and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...
Singapore 0.9.x0.10 - Multiple Traversal Arbitrary File Access
Singapore 0.9.x0.10 - Multiple Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/18518/info singapore gallery is prone to directory-traversal and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...