EUVD-2006-3748

Malware in sbrugna...

Saurus CMS 4.6.4 - Multiple Remote File Inclusions

Exploit Title: SaurusCMS = 4.6.4 Multiple RFI Exploit Date: 19-12-2009 Author: cr4wl3r Software Link: http://www.saurus.info Version: N/A Tested on: GNU/LINUX Code class.writeexcelworkbook.inc.php global $classpath; requireonce $classpath."excel/class.writeexcelbiffwriter.inc.php"; requireonce...

CVE-2006-3754

CVE-2006-3754 is a PHP remote file inclusion vulnerability in FlushCMS 1.0.0-pre2 and earlier. The flaw resides in Include/editor/rich_files/class.rich.php, where an attacker can cause remote PHP code execution by supplying a URL in the class_path parameter. The connected documents confirm the af...

CVE-2006-2730

PHP remote file inclusion vulnerability in admin/libactionstep.php in Hot Open Tickets HOT 11012004ver2f, when registerglobals is enabled, allows remote attackers to include arbitrary files via the GLOBALSCLASSPATH parameter. NOTE: this issue might be resultant from a global overwrite vulnerabili...

Hot Open Tickets <= 11012004 (CLASS_PATH) Remote Include Vuln

Exploit for unknown platform in category web applications ============================================================= Hot Open Tickets = 11012004 CLASSPATH Remote Include Vuln ============================================================= DEVIL TEAM THE BEST POLISH TEAM HOT Hot Open Tickets...