1978 matches found
kronolith -- arbitrary local file inclusion vulnerability
iDefense Labs reports: Remote exploitation of a design error in Horde's Kronolith could allow an authenticated web mail user to execute arbitrary PHP code under the security context of the running web server. The vulnerability specifically exists due to a design error in the way it includes certa...
Echo Security Advisory 2006.61
------------------------------------------------------------------------------ ECHOADV61$2006 a-ConMan = v3.2beta Remote File Inclusion ------------------------------------------------------------------------------ Author : Ahmad Maulana a.k.a Matdhule Date Found : November, 22nd 2006 Location :...
CVE-2006-6086
PHP remote file inclusion vulnerability in src/arkinc.php in e-Ark 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the cfgpearpath parameter...
CVE-2006-6093
Multiple PHP remote file inclusion vulnerabilities in adminprint.php in PicturesPro Photo Cart 3.9 allow remote attackers to execute arbitrary PHP code via a URL in the 1 adminfolder and 2 path parameters...
CVE-2006-6081
PHP remote file inclusion vulnerability in SmartyCompiler.class.php in Telaen 1.1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pluginfile parameter...
CVE-2006-6065
PHP remote file inclusion vulnerability in includes/mxcommon.php in the CalSnails Module for MxBB Portal 1.06 allows remote attackers to execute arbitrary PHP code via a URL in the modulerootpath parameter...
CVE-2006-6042
PHP remote file inclusion vulnerability in core/editor.php in phpWebThings 1.5.2 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the editorinsertbottom parameter...
CVE-2006-6043
PHP file inclusion vulnerability in loginform-inc.php in Oliver formerly Webshare 1.2.2 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the confmotdfile parameter, which is accessed by the...
CVE-2006-6049
PHP remote file inclusion vulnerability in shambo2.php in the Shambo2 comshambo2 component for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
a-ConMan <= 3.2b (common.inc.php) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ===================================================================== a-ConMan = 3.2b common.inc.php Remote File Inclusion Vulnerability ===================================================================== \ /\ \ / | \ \ | / \ // / | \ |...
a-ConMan 3.2b - common.inc.php Remote File Inclusion
a-ConMan 3.2b - common.inc.php Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV61$2006 ------------------------------------------------------------------------------ ECHOADV61$2006 a-ConMan = v3.2beta Remote File Inclusion...
CVE-2006-5928
Multiple PHP remote file inclusion vulnerabilities in Phpjobscheduler 3.0 allow remote attackers to execute arbitrary PHP code via a URL in the installedconfigfile parameter to 1 add-modify.php, 2 delete.php, 3 modify.php, and 4 phpjobscheduler.php...
CVE-2006-5899
The CVE-2006-5899 issue is a PHP remote file inclusion in @cid stats 2.3 via the repertoire parameter of install.php3, enabling remote code execution. The root cause is the presence of install.php3 that can be invoked with a URL parameter to include arbitrary PHP code. The notes in sources indica...
Update Protection against phpFullAnnu 'repmod' parameter File Inclusion Vulnerability
phpFullAnnu, a content management system portal application, is prone to a remote file inclusion vulnerability. An attacker can exploit this vulnerability to execute arbitrary PHP code on an affected system via a maliciously crafted URL in the 'repmod' parameter...
Soholaunch Pro <= 4.9 r36 Remote File Inclusion Vulnerabilities
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV57$2006 ----------------------------------------------------------------------------------------------- ECHOADV57$2006Soholaunch Pro =4.9 r36 Multiple Remote File Inclusion...
CVE-2006-5636
PHP remote file inclusion vulnerability in common.php in Simple Website Software SWS 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SWSDIR parameter...
P-Book <= 1.17 (pb_lang) Remote File Inclusion Vulnerabilities
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV56$2006 ------------------------------------------------------------------------------ ECHOADV56$2006 P-Book = 1.17 pblang Remote File Inclusion...
CVE-2006-5623
PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool EE Tool 0.4-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cgipath parameter...
CVE-2006-5594
PHP remote file inclusion vulnerability in University of British Columbia iPeer 2.0, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: it is possible that this issue is related to CakePHP...
CVE-2006-5549
PHP remote file inclusion vulnerability in libraries/amfphp/amf-core/custom/CachedGateway.php in Adobe PHP SDK allows remote attackers to execute arbitrary PHP code via the AMFPHPBASE parameter. NOTE: this issue has been disputed by a third-party researcher who states that AMFPHPBASE is a constan...