25 matches found
CVE-2002-2425
Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as 1 AdminViewError and 2 AdminAddadmin via a direct request...
Sun AnswerBook2 1.x - Unauthorized Administrative Script Access
Sun AnswerBook2 1.x - Unauthorized Administrative Script Access source: https://www.securityfocus.com/bid/5383/info Sun Microsystems AnswerBook2 allows users to view Sun documentation through a web browser, and is available for Solaris. AnswerBook2 includes an administrative web interface...
Phorum 3.x - Arbitrary File Read
Phorum 3.x - Arbitrary File Read source: https://www.securityfocus.com/bid/1997/info Phorum is a PHP based web forums package. Due to an error in the handling of user input in administrative scripts, any user can view the any file readable by the webserver on the target host. This is due to...
Phorum 3.x - PHP Configuration Disclosure
Phorum 3.x - PHP Configuration Disclosure source: https://www.securityfocus.com/bid/1985/info Phorum is a PHP based web forums package. Due to an error in the implementation of forum selection in administrative scripts, any user can view the any PHP script on the target host. This is due to...
piranha default password/exploit
Hi, In the interest of full disclosure I used an alias the last few times, let's see how this goes as me here are the details of the piranha vulnerability. RE: ISS Security Advisory iss.00-04-24.Piranha To summarize, piranha is a GUI tool for monitoring, configuring, and administering an LVS...