4 matches found
EUVD-2007-1615
Malware in sbrugna...
Remote file inclusion
PHP remote file inclusion vulnerability in templates/head.php in Active PHP Bookmark Notes APB 0.2.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the APBSETTINGStemplatepath parameter. NOTE: this issue might be related to CVE-2003-1254...
CVE-2003-1254
APB 1.1.01 is affected by a remote PHP code execution vulnerability. An attacker can cause arbitrary code execution by altering the APB_SETTINGS parameter to point to a remote URL containing code, via files head.php , apb_common.php , or apb_view_class.php . The root cause is loading code from a ...
CVE-2003-1254
Active PHP Bookmarks APB 1.1.01 allows remote attackers to execute arbitrary PHP code via 1 head.php, 2 apbcommon.php, or 3 apbviewclass.php by modifying the APBSETTINGS parameter to reference a URL on a remote web server that contains the code...