37 matches found
EUVD-2006-5168
Malware in sbrugna...
EUVD-2008-3550
Malware in sbrugna...
EUVD-2007-1519
Malware in sbrugna...
EUVD-2007-0154
Malware in sbrugna...
CVE-2008-3564
Multiple directory traversal vulnerabilities in index.php in Dayfox Blog 4 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 p, 2 cat, and 3 archive parameters. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC...
CVE-2008-3564
The CVE-2008-3564 entry concerns multiple directory traversal flaws in Dayfox Blog 4’s index.php. The vulnerability allows remote attackers to include and execute arbitrary local files by manipulating the dot-dot sequences in the (1) p, (2) cat, and (3) archive parameters. In some environments th...
Dayfox Blog 4 Multiple Local File Inclusion Vulnerabilities
No description provided by source. ..:::::Dayfox Blog LOCAL FILE INCLUSION Vulnerbility ::::... Virangar Security Team www.virangar.net -------- Discoverd By :Virangar Security Team hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Ali007,Zahra & all virangar members & all iranian hackerz...
dayfox-lfi.txt
..:::::Dayfox Blog LOCAL FILE INCLUSION Vulnerbility ::::... Virangar Security Team www.virangar.net -------- Discoverd By :Virangar Security Team hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Ali007,Zahra & all virangar members & all iranian hackerz greetz:to my best friend in the...
Dayfox Blog 4 - Multiple Local File Inclusions
..:::::Dayfox Blog LOCAL FILE INCLUSION Vulnerbility ::::... Virangar Security Team www.virangar.net -------- Discoverd By :Virangar Security Team hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Ali007,Zahra & all virangar members & all iranian hackerz greetz:to my best friend in the...
Dayfox Blog 4 - Multiple Local File Inclusions
Dayfox Blog 4 - Multiple Local File Inclusions ..:::::Dayfox Blog LOCAL FILE INCLUSION Vulnerbility ::::... Virangar Security Team www.virangar.net -------- Discoverd By :Virangar Security Team hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Ali007,Zahra & all virangar members & all...
Dayfox Blog 4 Multiple Local File Inclusion Vulnerabilities
Exploit for unknown platform in category web applications =========================================================== Dayfox Blog 4 Multiple Local File Inclusion Vulnerabilities =========================================================== -------- Discoverd By :Virangar Security Team hadihadi...
Code injection
Direct static code injection vulnerability in postpost.php in Dayfox Blog dfblog 4 allows remote attackers to execute arbitrary PHP code via the cat parameter, which can be executed via a request to posts.php...
Immunity Canvas: DFBLOG4_EXEC
Name| dfblog4exec ---|--- CVE| CVE-2007-1525 Exploit Pack| CANVAS Description| Dayfox Blog4 exec Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Ninja Designs CVE Url: https://vulners.com/cve/CVE-2007-1525 CVE Name: CVE-2007-1525...
CVE-2007-1525
Direct static code injection vulnerability in postpost.php in Dayfox Blog dfblog 4 allows remote attackers to execute arbitrary PHP code via the cat parameter, which can be executed via a request to posts.php...
CVE-2007-1525
CVE-2007-1525 affects Dayfox Blog (dfblog) 4. The vulnerability is in the file that serves posts (posts.php) via the parameter cat passed to postpost.php, enabling direct static code injection and remote execution of arbitrary PHP by an attacker. Public references in connected documents indicate ...
CVE-2007-1525
Direct static code injection vulnerability in postpost.php in Dayfox Blog dfblog 4 allows remote attackers to execute arbitrary PHP code via the cat parameter, which can be executed via a request to posts.php...
Dayfox Blog Postpost.PHP远程文件包含漏洞
Dayfox Blog是一款基于PHP的WEB应用程序。 Dayfox Blog不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'Postpost.PHP'脚本对用户提交的'cmd'参数缺少过滤,直接提交SHELL命令作为参数数据,可导致以WEB权限执行任意命令。 Dayfox Blog 4.5 目前没有解决方案提供: http://hotscripts.com/Detailed/66344.html http://www.example.com/dfblog/posts.php?cmd=ls -la...
Dayfox Blog 4 - postpost.php Remote Code Execution
Dayfox Blog 4 - postpost.php Remote Code Execution / \ / @ +Iranian Are The Best In World+ Portal : Dayfox Blog V 4 Download : http://www.dayfoxdesigns.co.nr Dork : "Powered by Dayfox Designs" Author : Dj7xpl | [email protected] Risk : High Remote Code Execution +...
Dayfox Blog 4 - 'postpost.php' Remote Code Execution
/ \ / @ +Iranian Are The Best In World+ Portal : Dayfox Blog V 4 Download : http://www.dayfoxdesigns.co.nr Dork : "Powered by Dayfox Designs" Author : Dj7xpl | [email protected] Risk : High Remote Code Execution +...
Dayfox Blog 4 (postpost.php) Remote Code Execution Vulnerability
No description provided by source. html !-- .-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8|-\IIIIII/-| / \ / @ +Iranian Are The Best In World+ Portal : Dayfox Blog V 4 Download : http://www.dayfoxdesigns.co.nr Dork : "Powered by Dayfox Designs" Author...