19 matches found
CVE-2020-36970 PMB 5.6 - 'chemin' Local File Disclosure
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read arbitrary system files by manipulating the 'chemin' parameter. Attackers can exploit the unsanitized file path input to access sensitive files like /etc/passwd by sending crafted requests to the...
EUVD-2020-30877
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read arbitrary system files by manipulating the 'chemin' parameter. Attackers can exploit the unsanitized file path input to access sensitive files like /etc/passwd by sending crafted requests to the...
CVE-2020-36970
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read arbitrary system files by manipulating the 'chemin' parameter. Attackers can exploit the unsanitized file path input to access sensitive files like /etc/passwd by sending crafted requests to the...
CVE-2020-36970 PMB 5.6 - 'chemin' Local File Disclosure
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read arbitrary system files by manipulating the 'chemin' parameter. Attackers can exploit the unsanitized file path input to access sensitive files like /etc/passwd by sending crafted requests to the...
PT-2026-5161
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read arbitrary system files by manipulating the 'chemin' parameter. Attackers can exploit the unsanitized file path input to access sensitive files like /etc/passwd by sending crafted requests to the...
EUVD-2006-5211
Malware in sbrugna...
EUVD-2006-4486
Malware in sbrugna...
EUVD-2007-1923
Malware in sbrugna...
EUVD-2001-1149
Malware in sbrugna...
EUVD-2006-1496
Malware in sbrugna...
CVE-2007-4457
Directory traversal vulnerability in forumreply.php in Dalai Forum 1.1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the chemin parameter...
Directory traversal
Multiple directory traversal vulnerabilities in Cedric CLAIRE PortailPhp 2 allow remote attackers to read arbitrary files via a .. dot dot in the chemin parameter to 1 modnews/index.php or 2 modnews/goodies.php. NOTE: The provenance of this information is unknown; the details are obtained solely...
TLM CMS Chemin参数远程文件包含漏洞
TLM CMS是一款基于PHP的WEB应用程序。 TLM CMS不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'i-accueil.php'脚本对用户提交的'Chemin'参数缺少过滤,指定远程服务器上的文件作为包含参数,可导致以WEB权限执行任意命令。 comscripts.com TLM CMS 1.1 目前没有解决方案提供: http://www.comscripts.com/scripts/php.tlm-cms.2175.html http://www.example.com/i-accueil.php?chemin=EV!L.C0D3.Tx...
PT-2006-6573 · Jean Christophe Ramos · Script Bannieres
Name of the Vulnerable Software and Affected Versions: Jean-Christophe Ramos SCRIPT BANNIERES aka ban 0.1 and PLS-Bannieres 1.21 Description: The issue concerns a remote file inclusion vulnerability in the modules/bannieres/bannieres.php file, which could potentially allow remote attackers to...
EUVD-2006-3916
PHP remote file inclusion vulnerability in modmembre/inscription.php in PortailPHP 1.7 allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in dir.php in Explorer XP allows remote attackers to inject arbitrary web script or HTML via the chemin parameter. NOTE: it is possible that this issue is resultant from CVE-2006-1492...
CVE-2006-1492
Directory traversal vulnerability in dir.php in Explorer XP allows remote attackers to read arbitrary files via the chemin parameter...
CVE-2006-1493
Cross-site scripting XSS vulnerability in dir.php in Explorer XP allows remote attackers to inject arbitrary web script or HTML via the chemin parameter. NOTE: it is possible that this issue is resultant from CVE-2006-1492...
CVE-2006-1492
Directory traversal vulnerability in dir.php in Explorer XP allows remote attackers to read arbitrary files via the chemin parameter...