9 matches found
EUVD-2007-6343
Malware in sbrugna...
PHP-Proxima autohtml.PHP Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7598/info A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified fi...
PHP-Nuke autohtml.php本地文件包含漏洞
PHP-Nuke是一款流行的内容管理程序。 PHP-Nuke包含的autohtml.php脚本不正确处理用户输入,远程攻击者可以利用漏洞以WEB权限查看系统文件内容。 问题是'autohtml.php'脚本对用户提交的'filename'参数缺少过滤,提交包含多个"../"字符的数据作为参数,可绕过WEB ROOT限制,以WEB权限查看系统文件内容。 PHP-Nuke 8.0 目前没有详细解决方案提供: http://www.phpnuke.org/...
PHP-Nuke 8.0 - autohtml.php Local File Inclusion
PHP-Nuke 8.0 - autohtml.php Local File Inclusion source: https://www.securityfocus.com/bid/26807/info Dance Music is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized remote user to view files and...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. PHP-Nuke: directory traversal in autohtml.php and autohtml0.php allows to obtain password hashes. By requesting non-existant file it's possible to disclosure installation directory...
Local File Inclusion and Information Leakage vulnerabilities in PHP-Nuke
Здравствуйте 3APA3A! Сообщаю вам о найденной мною Local File Inclusion и Information Leakage уязвимостях в PHP-Nuke. Уязвимости в скриптах autohtml.php и autohtml0.php в параметре filename. Local File Inclusion: http://site/autohtml.php?filename=../file.php...
phpnukeInclude.txt
local file include in PHP-Nuke autohtml.php Rish : High Class : Local Script : autohtml.php Thanks : www.lezr.com/vb & All kuwait hackers Link : http://www.lezr.com/vb/showthread.php?p=104324 Drkiz : allinurl:"autohtml.php" autohtml.php?op=modload&name=The-file-you-want-to-include Exampel :...
local file include in PHP-Nuke (autohtml.php)
local file include in PHP-Nuke autohtml.php Rish : High Class : Local Script : autohtml.php Thanks : www.lezr.com/vb & All kuwait hackers Link : http://www.lezr.com/vb/showthread.php?p=104324 Drkiz : allinurl:"autohtml.php" autohtml.php?op=modload&name=The-file-you-want-to-include Exampel :...
PHP-Proxima - 'autohtml.php' Information Disclosure
source: https://www.securityfocus.com/bid/7598/info A vulnerability has been reported for PHP-Proxima. The problem occurs in the autohtml.php script. Specifically, the script fails to verify the contents of a user-supplied variable before including a specified file into an HTML file. As a result,...