9 matches found
EUVD-2007-6343
Malware in sbrugna...
PHP-Proxima autohtml.PHP Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7598/info A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified fi...
PHP-Nuke autohtml.php本地文件包含漏洞
PHP-Nuke是一款流行的内容管理程序。 PHP-Nuke包含的autohtml.php脚本不正确处理用户输入,远程攻击者可以利用漏洞以WEB权限查看系统文件内容。 问题是'autohtml.php'脚本对用户提交的'filename'参数缺少过滤,提交包含多个"../"字符的数据作为参数,可绕过WEB ROOT限制,以WEB权限查看系统文件内容。 PHP-Nuke 8.0 目前没有详细解决方案提供: http://www.phpnuke.org/...
PHP-Nuke 8.0 - autohtml.php Local File Inclusion
PHP-Nuke 8.0 - autohtml.php Local File Inclusion source: https://www.securityfocus.com/bid/26807/info Dance Music is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized remote user to view files and...
Local File Inclusion and Information Leakage vulnerabilities in PHP-Nuke
Здравствуйте 3APA3A! Сообщаю вам о найденной мною Local File Inclusion и Information Leakage уязвимостях в PHP-Nuke. Уязвимости в скриптах autohtml.php и autohtml0.php в параметре filename. Local File Inclusion: http://site/autohtml.php?filename=../file.php...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. PHP-Nuke: directory traversal in autohtml.php and autohtml0.php allows to obtain password hashes. By requesting non-existant file it's possible to disclosure installation directory...
phpnukeInclude.txt
local file include in PHP-Nuke autohtml.php Rish : High Class : Local Script : autohtml.php Thanks : www.lezr.com/vb & All kuwait hackers Link : http://www.lezr.com/vb/showthread.php?p=104324 Drkiz : allinurl:"autohtml.php" autohtml.php?op=modload&name=The-file-you-want-to-include Exampel :...
local file include in PHP-Nuke (autohtml.php)
local file include in PHP-Nuke autohtml.php Rish : High Class : Local Script : autohtml.php Thanks : www.lezr.com/vb & All kuwait hackers Link : http://www.lezr.com/vb/showthread.php?p=104324 Drkiz : allinurl:"autohtml.php" autohtml.php?op=modload&name=The-file-you-want-to-include Exampel :...
PHP-Proxima - 'autohtml.php' Information Disclosure
source: https://www.securityfocus.com/bid/7598/info A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified file into an HTML file. As a result,...