CVE-2014-6236

Unspecified vulnerability in the LumoNet PHP Include lumophpinclude extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary scripts via vectors related to extension links...

Code injection

Unspecified vulnerability in the LumoNet PHP Include lumophpinclude extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary scripts via vectors related to extension links...

CVE-2014-6236

Unspecified vulnerability in the LumoNet PHP Include lumophpinclude extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary scripts via vectors related to extension links...

CVE-2014-6236

CVE-2014-6236 affects the LumoNet PHP Include (lumophpinclude) TYPO3 extension. Affected versions are 1.2.0 and earlier. The vulnerability allows remote attackers to execute arbitrary scripts via vectors related to extension links, indicating arbitrary code execution. The issue is addressed by up...

XAMPP 1.6.x 'showcode.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37999/info XAMPP is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker can exploit this vulnerability to obtain potentially sensitive information an...

Simple PHP Blog 0.5.1 - Local File Inclusion Vulnerability

No description provided by source. Simple PHP Blog is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary local scripts in the context ...

Download Management 1.00 for PHP-Fusion Multiple Local File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/27618/info Download Management for PHP-Fusion is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues may allow an attacker to access...

OpenBiblio 0.x theme_del_confirm.php name Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site scripting, HTML-injection, and local...

Uberghey CMS 0.3.1 - 'index.php' Multiple Local File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/28217/info Uberghey CMS is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues may allow an attacker to access potentially sensitive...

OpenInferno OI.Blogs 1.0 Multiple Local File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38402/info OpenInferno OI.Blogs is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially...

BarracudaDrive 6.7.2 Cross Site Scripting

Exploit Title : BarracudaDrive 6.7.2 Administrator Panel Rflected Cross-Site Scripting Author : Govind Singh aka NullCool Vendor : http://barracudadrive.com Software : BarracudaDrive 6.7.2 Date : 15/06/2014 Discovered At : IHT Lab 1ND14N H4X0R5 T34M Love to : error1046, DeadMan India,...

CVE-2014-1998

Cross-site scripting XSS vulnerability in Nippon Institute of Agroinformatics SOY CMS 1.4.0c and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

EVM: Stored XSS

Multiple cross-site scripting XSS vulnerabilities in ManageIQ EVM allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

QNX 6.4.x/6.5.x ifwatchd - Local root Exploit

Exploit for QNX platform in category local exploits !/bin/sh QNX 6.4.x/6.5.x ifwatchd local root exploit by cenobyte 2013 - vulnerability description: Setuid root ifwatchd watches for addresses added to or deleted from network interfaces and calls up/down scripts for them. Any user can launch...

MeiuPic 2.1.2 - 'ctl' Local File Inclusion

source: https://www.securityfocus.com/bid/66317/info MeiuPic is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts. This...

Quest / Dell KACE K1000 Systems Management Appliance (SMA) <= 5.5.90545 XSS Vulnerability (SOL120154)

Quest / Dell KACE K1000 Systems Management Appliance SMA is prone to a cross-site scripting XSS vulnerability. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

xBoard 5.0/5.5/6.0 - &#039;view.php&#039; Local File Inclusion

source: https://www.securityfocus.com/bid/64619/info xBoard is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts. This...

xBoard 5.05.56.0 - view.php Local File Inclusion

xBoard 5.05.56.0 - view.php Local File Inclusion source: https://www.securityfocus.com/bid/64619/info xBoard is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...

Multiple cross-site scripting vulnerabilities in Cybozu Garoon

Overview Cybozu Garoon provided by Cybozu, Inc. is a groupware. Cybozu Garoon contains multiple cross-site scripting vulnerabilities. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to the information provid...

Nagios Looking Glass <= 1.1.0 beta 2 LFI Vulnerability - Active Check

Nagios Looking Glass is prone to a local file include LFI vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...