5285 matches found
osTicket 1.x - Open_form.php Remote File Inclusion
osTicket 1.x - Openform.php Remote File Inclusion source: https://www.securityfocus.com/bid/18190/info osTicket is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to includ...
DoceboLms 2.0.x - 'Lang' Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/18110/info DoceboLMS is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containi...
DoceboLms 2.0.x - Lang Multiple Remote File Inclusions
DoceboLms 2.0.x - Lang Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18110/info DoceboLMS is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit...
powerInclude.txt
Vendor: Power-Place www.power-place.net PHP Easy Galerie 1.1 ------------------------------------------------- Author:Craziest Contact: craziestatgmaildotcom Vuln discovered by BrEakerS -------------------------------------------------- Method:An attacker can exploit this issue to include an...
DoceboLms 2.0.x/3.0.x / DoceboKms 3.0.3 / Docebo CMS 3.0.x - Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/18109/info Docebo is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing...
DoceboLms 2.0.x3.0.x DoceboKms 3.0.3 Docebo CMS 3.0.x - Multiple Remote File Inclusions
DoceboLms 2.0.x3.0.x DoceboKms 3.0.3 Docebo CMS 3.0.x - Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18109/info Docebo is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...
PHP Easy Galerie Index.PHP Remote File Include Vulnerability
Vendor: Power-Place www.power-place.net PHP Easy Galerie 1.1 ------------------------------------------------- Author:Craziest Contact: craziestatgmaildotcom Vuln discovered by BrEakerS -------------------------------------------------- Method:An attacker can exploit this issue to include an...
Artmedic NewsLetter 4.1 - 'Log.php' Remote Script Execution
source: https://www.securityfocus.com/bid/18047/info Artmedic Newsletter is prone to a remote PHP code-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to create files containing arbitrary conte...
Artmedic NewsLetter 4.1 - Log.php Remote Script Execution
Artmedic NewsLetter 4.1 - Log.php Remote Script Execution source: https://www.securityfocus.com/bid/18047/info Artmedic Newsletter is prone to a remote PHP code-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can...
Newsportal: code injection vulnerability
Hello, there is a code injection vulnerability in NewsPortal that could give everyone the ability to execute php code on the webserver where newsportal is installed. This bug should only occur if "registerglobals=on" is set in the php.ini. To remove the problem: - install the recent version:...
Pixaria PopPhoto 3.5.4 - 'CFG[popphoto_base_path]' Remote File Inclusion
source: https://www.securityfocus.com/bid/17970/info Pixaria PopPhoto is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
FreeBSD : gallery2 -- file disclosure vulnerability (47bdabcf-3cf9-11da-baa2-0004614cc33d)
Michael Dipper wrote : A vulnerability has been discovered in gallery, which allows remote users unauthorized access to files on the webserver. A remote user accessing gallery over the web may use specially crafted HTTP parameters to access arbitrary files located on the webserver. All files...
ISPConfig 2.2.2/2.2.3 - 'Session.INC.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/17909/info ISPConfig is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious P...
ISPConfig 2.2.22.2.3 - Session.INC.php Remote File Inclusion
ISPConfig 2.2.22.2.3 - Session.INC.php Remote File Inclusion source: https://www.securityfocus.com/bid/17909/info ISPConfig is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this iss...
Fast Click SQL Lite 1.1.2/1.1.3 - 'show.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/17819/info Fast Click SQL Lite is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
Fast Click SQL Lite 1.1.21.1.3 - show.php Remote File Inclusion
Fast Click SQL Lite 1.1.21.1.3 - show.php Remote File Inclusion source: https://www.securityfocus.com/bid/17819/info Fast Click SQL Lite is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can...
ClamAV: Buffer overflow in Freshclam
Background ClamAV is a GPL virus scanner. Freshclam is a utility to download virus signature updates. Description Ulf Harnhammar and an anonymous German researcher discovered that Freshclam fails to check the size of the header data returned by a webserver. Impact By enticing a user to connect to...
phpBB Knowledge Base 2.0.2 - 'Mod KB_constants.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/17763/info Knowledge Base Mod for phpbb is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file...
DMCounter 0.9.2 -b - 'Kopf.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/17756/info DMCounter is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious P...
phpBB Knowledge Base 2.0.2 - Mod KB_constants.php Remote File Inclusion
phpBB Knowledge Base 2.0.2 - Mod KBconstants.php Remote File Inclusion source: https://www.securityfocus.com/bid/17763/info Knowledge Base Mod for phpbb is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An...