Lucene search
K

1981 matches found

seebug.org
seebug.org
added 2006/04/10 12:0 a.m.16 views

Horde <= 3.0.9 3.1.0 (Help Viewer) Remote Code Execution (metasploit)

No description provided by source. Title: Horde = 3.0.9, 3.1.0 Help Viewer Remote PHP Code Execution Vulnerability Name: hordehelpmodule.pm License: Artistic/BSD/GPL Info: Trying to get the command execution exploits out of the way on milw0rm.com. M's are always good. - This is an exploit module...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/04/10 12:0 a.m.94 views

PHP 4.x - 'tempnam() open_basedir' Restriction Bypass

source: https://www.securityfocus.com/bid/17439/info PHP is prone to multiple 'safemode' and 'openbasedir' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to access sensitive information or to write files in unauthorized locations. These vulnerabilities would be an...

7.4AI score
Exploits0
NVD
NVD
added 2006/04/07 10:4 a.m.19 views

CVE-2006-1668

newimage.php in Eric Gerdes Crafty Syntax Image Gallery CSIG aka PHP thumbnail Photo Gallery 3.1g and earlier allows remote authenticated users to upload and execute arbitrary PHP code via a multipart/form-data POST with a .jpg filename in the fullimage parameter and the ext parameter set to .php...

9CVSS7.1AI score0.04134EPSS
Exploits1References8
Cvelist
Cvelist
added 2006/04/07 10:0 a.m.30 views

CVE-2006-1668

newimage.php in Eric Gerdes Crafty Syntax Image Gallery CSIG aka PHP thumbnail Photo Gallery 3.1g and earlier allows remote authenticated users to upload and execute arbitrary PHP code via a multipart/form-data POST with a .jpg filename in the fullimage parameter and the ext parameter set to .php...

7.1AI score0.04134EPSS
Exploits1References8
NVD
NVD
added 2006/04/05 10:4 a.m.23 views

CVE-2006-1623

Unspecified vulnerability in main.php in an unspecified "file created by Andries Bruinsma," possibly a FleXiBle Development FXB application, allows remote attackers to include and execute arbitrary PHP code. NOTE: this disclosure is extremely vague and has very little information about the specif...

4.3CVSS6.6AI score0.0118EPSS
Exploits0References5
Prion
Prion
added 2006/04/05 10:4 a.m.15 views

Information disclosure

Unspecified vulnerability in main.php in an unspecified "file created by Andries Bruinsma," possibly a FleXiBle Development FXB application, allows remote attackers to include and execute arbitrary PHP code. NOTE: this disclosure is extremely vague and has very little information about the specif...

4.3CVSS7AI score0.0118EPSS
Exploits0References5
Prion
Prion
added 2006/04/04 10:4 a.m.13 views

Remote file inclusion

PHP remote file inclusion vulnerability in lib/armygame.php in SQuery 4.5 and earlier, as used in products such as Autonomous LAN party ALP, allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter. NOTE: this only occurs when registerglobals is disabled...

5.1CVSS7.7AI score0.07481EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/04/02 9:0 p.m.19 views

CVE-2006-1576

Direct static code injection vulnerability in QLnews 1.2 allows remote authenticated administrators to execute arbitrary PHP code by modifying config.php...

7.5AI score0.01709EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2006/03/28 12:0 a.m.48 views

PHP Live Helper Multiple Remote File Inclusions

The remote host is running PHP Help Live, a commercial web-based real-time help tool written using PHP and MySQL. The version of PHP Help Live installed on the remote host fails to sanitize input to the 'abspath' parameter before using it in various scripts to include files with PHP code. An...

7.5CVSS5.9AI score0.0812EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2006/03/26 12:0 a.m.30 views

Limbo CMS Multiple Vulnerabilities

The remote web server contains a PHP application that is affected by numerous vulnerabilities. Description : The remote host is running Limbo CMS, a content-management system written in PHP. The remote version of this software is vulnerable to several flaws including : - If registerglobals is off...

7.5CVSS0.1AI score0.05245EPSS
Exploits4References8
OpenVAS
OpenVAS
added 2006/03/26 12:0 a.m.23 views

4Images <= 1.7.1 Directory Traversal Vulnerability

The remote web server is running 4Images which is prone to directory traversal attacks. SPDX-FileCopyrightText: 2006 Ferdy Riphagen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS6.8AI score0.09758EPSS
Exploits0References3
Prion
Prion
added 2006/03/23 11:6 p.m.21 views

Design/Logic Flaw

Laurentiu Matei eXpandable Home Page XHP CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using 1 manager.php, 2 standalonemanager.php, and 3 images.php...

9CVSS7.6AI score0.09395EPSS
Exploits1References9Affected Software1
NVD
NVD
added 2006/03/23 11:6 p.m.26 views

CVE-2006-1371

Laurentiu Matei eXpandable Home Page XHP CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using 1 manager.php, 2 standalonemanager.php, and 3 images.php...

9CVSS7.1AI score0.09395EPSS
Exploits1References9
Cvelist
Cvelist
added 2006/03/23 11:0 a.m.26 views

CVE-2006-1363

images.php in Justin White aka YTZ Free Web Publishing System FreeWPS 2.11 allows remote attackers to execute arbitrary PHP code by uploading a .php file into the /upload directory as specified in the dirPath parameter, then performing a direct request to that file...

7.5AI score0.02793EPSS
Exploits0References4
NVD
NVD
added 2006/03/19 11:2 p.m.31 views

CVE-2006-1294

PHP remote file include vulnerability in PageController.php in KnowledgebasePublisher 1.2 allows remote attackers to include and execute arbitrary PHP code via a URL in the dir parameter...

7.5CVSS7.5AI score0.01909EPSS
Exploits1References7
Prion
Prion
added 2006/03/19 11:2 p.m.15 views

Authentication flaw

publish.ical.php in Jim Hu and Chad Little PHP iCalendar 2.21 and earlier does not require authentication for write access to the calendars directory, which allows remote attackers to upload and execute arbitrary PHP scripts via a WebDAV PUT request with a filename containing a .php extension and...

7.5CVSS7.9AI score0.06934EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2006/03/19 1:0 a.m.50 views

CVE-2006-1252

CVE-2006-1252 affects Light Weight Calendar (LWC) 1.0, where an eval injection in cal.php allows remote attackers to execute arbitrary PHP code via the date parameter to index.php. This is a remote code execution vulnerability with CVSSv2 base score 7.5 (HIGH) and network attack vector with no au...

7.5CVSS7.8AI score0.02551EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2006/03/14 2:2 a.m.19 views

CVE-2006-1219

Directory traversal vulnerability in Gallery 2.0.3 and earlier, and 2.1 before RC-2a, allows remote attackers to include arbitrary PHP files via ".." dot dot sequences in the stepOrder parameter to 1 upgrade/index.php or 2 install/index.php...

5CVSS6.1AI score0.03747EPSS
Exploits0References1
CVE
CVE
added 2006/03/14 2:0 a.m.52 views

CVE-2006-1219

Vulnerability summary (CVE-2006-1219) : A directory traversal / local file inclusion flaw affects Gallery 2.0.3 and earlier, and 2.1 before RC-2a. The issue allows an attacker to cause the application to include arbitrary PHP files via dot-dot sequences in the stepOrder parameter sent to (1) upgr...

5CVSS6.9AI score0.03747EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2006/03/14 1:6 a.m.14 views

Directory traversal

Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory...

7.5CVSS8.1AI score0.01965EPSS
Exploits1References8
Rows per page
Query Builder