7 matches found
EUVD-2009-0817
Malware in sbrugna...
phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injection
No description provided by source. $Id: phpscheduleitstartdate.rb 14073 2011-10-26 18:06:12Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injection
$Id: phpscheduleitstartdate.rb 14073 2011-10-26 18:06:12Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injection
This module exploits an arbitrary PHP code execution flaw in the phpScheduleIt software. This vulnerability is only exploitable when the magicquotesgpc PHP option is 'off'. Authentication is not required to exploit the bug. Version 1.2.10 and earlier of phpScheduleIt are affected. This module...
CVE-2008-6132
Eval injection vulnerability in reserve.php in phpScheduleIt 1.2.10 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary PHP code via the startdate parameter...
CVE-2008-6132
phpScheduleIt 1.2.10 and earlier is affected by an eval injection in reserve.php's start_date parameter when magic_quotes_gpc is disabled, allowing remote code execution. The vulnerability is confirmed by multiple sources (NVD entry CVE-2008-6132; OpenVAS and CVE cross-references; Metasploit modu...
CVE-2008-6132
creationtimestamp| type| source ---|---|--- 2008-10-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6646 2011-10-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18037 2018-05-29 15:50:33+00:00| seen|...