105 matches found
UBB.threads addpost_newpoll.php thispath Parameter Remote File Inclusion
The version of UBB.threads installed on the remote host fails to sanitize input to the 'thispath' parameter before using it in a PHP include function in the 'addpostnewpoll.php' script. Provided PHP's 'registerglobals' setting is enabled, an unauthenticated attacker may be able to exploit this fl...
PostNuke PNphpBB2 includes/functions_admin.php phpbb_root_path Parameter Remote File Inclusion
The installation of PostNuke on the remote host includes a version of the PNphpBB2 module that fails to sanitize input to the 'phpbbrootpath' parameter of the 'includes/functionsadmin.php' script before using it in a PHP 'includeonce' function. Provided PHP's 'registerglobals' setting is enabled,...
HP Systems Insight Manager Namazu lang Parameter Traversal Arbitrary File Access
The remote host appears to be running HP Systems Insight Manager SIM, a unified infrastructure management tool. The version of HP SIM on the remote host includes a version of the search engine Namazu that reportedly fails to validate user input to the 'lang' parameter of the 'namazucgi' script. A...
PHP Doc System index.php show Parameter Local File Inclusion
The remote host is running PHP Doc System, a modular, PHP-based system for creating documentation. The version of PHP Doc System installed on the remote host fails to sanitize user input to the 'show' parameter of the 'index.php' script before using it in a PHP 'include' function. An...
e107 Detection
The remote host is running e107, a content management system written in PHP and with a MySQL back-end. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid20129; scriptversion"1.15"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01";...
CubeCart < 3.0.4 Multiple Script XSS
The remote version of CubeCart contains several cross-site scripting vulnerabilities due to its failure to properly sanitize user-supplied input of certain variables to the 'index.php' and 'cart.php' scripts. %NASLMINLEVEL 70300 Josh Zlatin-Amishav This script is released under the GNU GPLv2...
phpGroupWare < 0.9.16 Addressbook Unspecified Vulnerability
The remote host seems to be running PhpGroupWare, a multi-user groupware suite written in PHP. This version is prone to an unspecified flaw related to its addressbook. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Gallery PostNuke Integration Access Validation Privilege Escalation
The remote host is running Gallery, a web-based photo album. According to its banner, the version of Gallery installed on the remote host is subject to an access validation issue when integrated with PostNuke, as is the case on the remote host. The issue means that any user with any level of admi...
FtpLocate flsearch.pl fsite Parameter Remote File Inclusion
The remote host is running FtpLocate, a web search engine for FTP sites written in Perl. The installed version of FtpLocate allows remote attackers to execute commands on the remote host by manipulating input to the 'fsite' parameter in various scripts. %NASLMINLEVEL 70300 C Tenable Network...
Cacti Local File Inclusion Vulnerability
The Cacti application running on the remote web server is affected by a local file inclusion vulnerability due to improperly validating user-supplied input to the 'configincludepath' parameter in 'configsettings.php'. A remote attacker can exploit this to execute arbitrary PHP code. %NASLMINLEVEL...
Websense Reporting Console Detection
The remote host appears to be running Websense, and connections are allowed to the web reporting console. A remote attacker could use information gathered from this access to mount further attacks. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid18177;...
Serendipity Detection
Serendipity, a PHP-based blog application, is running on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid18054; scriptversion"1.19"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"Serendipity Detection";...
ASP PortalApp Multiple SQL Injection
The remote host is running ASP PortalApp, a web application software written in ASP. There is a flaw in the remote software that could allow anyone to inject arbitrary SQL commands, which could in turn be used to gain administrative access on the remote host. In addition, a path disclosure and...
vBulletin Detection
The remote host is running vBulletin, a commercial web-based message forum application written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17282; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/08/10";...
phpBB Detection
The remote host is running phpBB, a bulletin-board system written in PHP. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid15779; scriptversion"1.25"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"phpBB Detection";...
Open WebMail Detection
The remote host is running Open WebMail, a webmail package written in Perl that provides access to mail accounts via POP3 or IMAP. %NASLMINLEVEL 70300 This script was written by George A. Theall, . See the Nessus Scripts License for details. include'deprecatednasllevel.inc'; include"compat.inc"; ...
Stellar Docs Malformed Query Path Disclosure
The remote host is running StellarDocs There is a flaw in this system which may allow an attacker to obtain the physical path of the remote installation of StellarDocs. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription scriptid11817; scriptversion"1.21";...
Ultimate PHP Board admin_iplog.php Arbitrary Code Execution
The remote host is running Ultimate PHP Board UPB. There is a flaw in this version which may allow an attacker to execute arbitrary code on this host, by sending a malformed user-agent which contains PHP commands. Once the user-agent has been sent, it is stored in the logs. When the administrator...
DCP-Portal Multiple Script Path Disclosure
DCP-Portal discloses its physical path when an empty request to adduser.php is made In addition, several other scripts may disclose the path if an invalid language is supplied, although Nessus has not checked for them. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ahmet Sabri ALPER To:...
PHP-Ping index.php pingto Parameter Arbitrary Code Execution
It is possible to make the remote host execute arbitrary DOS commands using the CGI phpping. An attacker may use this flaw to gain a shell with the privileges of the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref: Message-ID: From: "Gregory Le Bras | Security Corporation" To...