CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

NVD•added 2009/03/30 1:30 a.m.•9 views

CVE-2008-6543

Multiple PHP remote file inclusion vulnerabilities in ComScripts TEAM Quick Classifieds 1.0 via the DOCUMENTROOT parameter to 1 index.php3, 2 locate.php3, 3 searchresults.php3, 4 classifieds/index.php3, and 5 classifieds/view.php3; 6 index.php3, 7 manager.php3, 8 pass.php3, 9 remember.php3 10...

7.5CVSS7AI score0.0151EPSS

Exploits1References3

NVD•added 2009/02/20 1:30 a.m.•10 views

CVE-2008-6206

Multiple PHP remote file inclusion vulnerabilities in RobotStats 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the DOCUMENTROOT parameter to 1 graph.php and 2 robotstats.inc.php. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...

7.5CVSS7.4AI score0.01195EPSS

Exploits1References3

Exploit DB•added 2008/03/24 12:0 a.m.•33 views

Quick Classifieds 1.0 - 'controlpannel/alterCats.php3?DOCUMENT_ROOT' Remote File Inclusion

source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; othe...

7.4AI score

Exploits0

NVD•added 2007/09/18 8:17 p.m.•7 views

CVE-2007-4950

PHP remote file inclusion vulnerability in form/dbform/employee.php in PHPortal 0.2.7 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENTROOT parameter. NOTE: this issue is disputed by CVE, since DOCUMENTROOT cannot be modified by an attacker...

6.8CVSS7.4AI score0.00954EPSS

Exploits0References3

Prion•added 2007/08/14 6:17 p.m.•9 views

Remote file inclusion

PHP remote file inclusion vulnerability in adm/mystatistics.php in Omnistar Lib2 PHP 0.2 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENTROOT parameter...

7.5CVSS8AI score0.02617EPSS

Exploits1References5Affected Software1

NVD•added 2006/12/26 9:28 p.m.•6 views

CVE-2006-6727

PHP remote file inclusion vulnerability in inertianewsclass.php in inertianews 0.02 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENTROOT parameter...

7.5CVSS7.6AI score0.00677EPSS

Exploits0References1

Cvelist•added 2006/12/26 9:0 p.m.•13 views

CVE-2006-6727

PHP remote file inclusion vulnerability in inertianewsclass.php in inertianews 0.02 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENTROOT parameter...

7.6AI score0.00677EPSS

Exploits0References1

securityvulns•added 2006/11/28 12:0 a.m.•51 views

PhpGedView 4.0.2 (DOCUMENT_ROOT) File inclusion Vulnerablity

========================================================================================================================== PhpGedView 4.0.2 DOCUMENTROOT File inclusion Vulnerablity ======================================= Script:PhpGedView ============= Version:4.0.2 ============= script...

0.6AI score

Exploits0

Cvelist•added 2005/02/13 5:0 a.m.•12 views

CVE-2005-0376

PHP remote file inclusion vulnerability in SGallery 1.01 allows local and possibly remote attackers to execute arbitrary PHP code by modifying the DOCUMENTROOT parameter to reference a URL on a remote web server that contains 1 config.php or 2 sqllayer.php...

7.5AI score0.0214EPSS

Exploits1References6

NVD•added 2005/01/12 5:0 a.m.•12 views

CVE-2005-0376

7.5CVSS7.5AI score0.0214EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by