EUVD-2006-6721

Malware in sbrugna...

CVE-2006-6738

PHP remote file inclusion vulnerability in statistic.php in cwmCounter 5.1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter...

CVE-2006-6738

The CVE-2006-6738 entry concerns PHP remote file inclusion in statistic.php of cwmCounter 5.1.1 and earlier. The underlying issue is that an attacker can pass a URL in the path parameter, enabling remote PHP code execution on the affected system. The NVD entry assigns a base CVSSv2 score of 6.8 (...

CVE-2006-6738

PHP remote file inclusion vulnerability in statistic.php in cwmCounter 5.1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter...

CWMCounter Statistic.PHP远程文件包含漏洞

CWMCounter是一款基于PHP的WEB应用程序。 CWMCounter不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Statistic.PHP'脚本对用户提交的WEB参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 cwm-design cwmCounter 5.1.1 目前没有详细解决方案提供： http://explorer.cwm-design.de/index.php?d=27&infodir=29&PHPSESSID=a91ed867b39478796c44f505cec3c2c...

cwmCounter 5.1.1 (statistic.php) Remote File Include Exploit

Exploit for unknown platform in category web applications ============================================================ cwmCounter 5.1.1 statistic.php Remote File Include Exploit ============================================================ !/usr/bin/perl cwmCounter Remote File Include Exploit Code...

cwmCounter 5.1.1 - 'statistic.php' Remote File Inclusion

!/usr/bin/perl cwmCounter Remote File Include Exploit Coded by bd0rk || SOH-Crew Usage: cwmCounter.pl target cmd shell shell variable Greetings: str0ke, TheJT, Kacper, rgod use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd = $ARGV1; $cmdv = $ARGV2; if$Path!/http:/// || $Pathtocmd!/http:/// ||...