5 matches found
CVE-2008-2520
CVE-2008-2520 affects BigACE 2.4 and describes multiple PHP remote file inclusion vulnerabilities that allow an attacker to execute arbitrary PHP code via manipulated GLOBALS[_BIGACE] parameters in several files (e.g., addon/smarty/plugins/function.captcha.php, AdoDBConnection.php, item_informati...
CVE-2008-2520
Multiple PHP remote file inclusion vulnerabilities in BigACE 2.4, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 GLOBALSBIGACEDIRaddon parameter to a addon/smarty/plugins/function.captcha.php and b system/classes/sql/AdoDBConnection.php; a...
BigACE 2.4 - Multiple Remote File Inclusions
BigACE 2.4 - Multiple Remote File Inclusions / \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /'...
BigACE 2.4 - Multiple Remote File Inclusions
/ \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /' ---------------------------------------------- GrEeTs...
bigace-rfi.txt
/ \ @ /|\ /|\ |-| / | \ /|/\ / | \ @ | |--------------------/--|-voV---|'/--Vov-|-----------------------|-| |-| '^ o o '^ | | | | \Y/' |-| |-| | | | | -=ShAd0w-CrEw=- |-| |-| | | | | |-| ||| | @ l /\ / \ /\ l |-| l / V \ \ V \ l @ l/ \I \ /' ---------------------------------------------- GrEeTs...