5285 matches found
phpBB - BBRSS.php Remote File Inclusion
phpBB - BBRSS.php Remote File Inclusion source: https://www.securityfocus.com/bid/18432/info The bbrss plugin for PhpBB is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the conte...
DokuWiki: PHP code injection
Background DokuWiki is a simple to use wiki targeted at developer teams, workgroups and small companies. Description Stefan Esser discovered that the DokuWiki spell checker fails to properly sanitize PHP's "complex curly syntax". Impact A unauthenticated remote attacker may execute arbitrary PHP...
ISPConfig 2.2.3 - Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/18441/info ISPConfig is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing...
DoubleSpeak 0.1 - Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/18401/info DoubleSpeak is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containi...
DoubleSpeak 0.1 - Multiple Remote File Inclusions
DoubleSpeak 0.1 - Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18401/info DoubleSpeak is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these...
Simpnews 2.x - 'Wap_short_news.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18410/info Simpnews is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PH...
Adaptive Website Framework 1.11 - Remote File Inclusion
source: https://www.securityfocus.com/bid/18386/info Adaptive Website Framework is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files...
Foing 0.x - Remote File Inclusion
Foing 0.x - Remote File Inclusion source: https://www.securityfocus.com/bid/18392/info Foing is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remo...
Adaptive Website Framework 1.11 - Remote File Inclusion
Adaptive Website Framework 1.11 - Remote File Inclusion source: https://www.securityfocus.com/bid/18386/info Adaptive Website Framework is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can...
Foing 0.x - Remote File Inclusion
source: https://www.securityfocus.com/bid/18392/info Foing is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP...
MiraksGalerie 2.62 - galsecurity.lib.php?listconfigfile[0] Remote File Inclusion
MiraksGalerie 2.62 - galsecurity.lib.php?listconfigfile0 Remote File Inclusion source: https://www.securityfocus.com/bid/18313/info MiraksGalerie is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input...
MiraksGalerie 2.62 - galimage.lib.php?listconfigfile[0] Remote File Inclusion
MiraksGalerie 2.62 - galimage.lib.php?listconfigfile0 Remote File Inclusion source: https://www.securityfocus.com/bid/18313/info MiraksGalerie is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...
MiraksGalerie 2.62 - 'galimage.lib.php?listconfigfile[0]' Remote File Inclusion
source: https://www.securityfocus.com/bid/18313/info MiraksGalerie is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...
MiraksGalerie 2.62 - 'galsecurity.lib.php?listconfigfile[0]' Remote File Inclusion
source: https://www.securityfocus.com/bid/18313/info MiraksGalerie is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...
Bookmark4U 2.0 - incfunction.php?env[include_prefix] Remote File Inclusion
Bookmark4U 2.0 - incfunction.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...
Bookmark4U 2.0 - incdbase.php?env[include_prefix] Remote File Inclusion
Bookmark4U 2.0 - incdbase.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...
CyBoards PHP Lite 1.211.25 - Common.php Remote File Inclusion
CyBoards PHP Lite 1.211.25 - Common.php Remote File Inclusion source: https://www.securityfocus.com/bid/18272/info CyBoards PHP Lite is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it...
Bookmark4U 2.0 - incconfig.php?env[include_prefix] Remote File Inclusion
Bookmark4U 2.0 - incconfig.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...
ESTsoft InternetDisk - Arbitrary File Upload Script Execution
ESTsoft InternetDisk - Arbitrary File Upload Script Execution source: https://www.securityfocus.com/bid/18279/info ESTsoft InternetDisk is prone to an arbitrary file-upload and script-execution vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in th...
Bookmark4U 2.0 - inccommon.php?env[include_prefix] Remote File Inclusion
Bookmark4U 2.0 - inccommon.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...