eFront 'langname' Parameter Local File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================ eFront 'langname' Parameter Local File Include Vulnerability ============================================================ Vulnerable: eFront eFront 3.5.5 Not Vulnerable: eFront...

Core Security Technologies Advisory 2010.0311

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ eFront-learning PHP file inclusion vulnerability 1. Advisory Information Title: eFront-learning PHP file inclusion vulnerability Advisory Id: CORE-2010-0311 Advisory...

eFront-learning PHP file inclusion vulnerability

1. Advisory Information Title: eFront-learning PHP file inclusion vulnerability Advisory Id: CORE-2010-0311 Advisory URL:http://www.coresecurity.com/core-labs/advisories/efront-php-file-inclusion Date published: 2010-03-16 Date of last update: 2010-03-16 Vendors contacted: Vendor name Release...

eFront Version Detection

This script detects the installed Efront version. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

eFront <= 3.5.4 'database.php' RFI Vulnerability

eFront is prone to a remote file inclusion RFI vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2009-3660

PHP remote file inclusion vulnerability in libraries/database.php in Efront 3.5.4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. NOTE: this is only a vulnerability when the administrator does not follow...

Remote file inclusion

PHP remote file inclusion vulnerability in libraries/database.php in Efront 3.5.4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. NOTE: this is only a vulnerability when the administrator does not follow...

CVE-2009-3660

PHP remote file inclusion vulnerability in libraries/database.php in Efront 3.5.4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. NOTE: this is only a vulnerability when the administrator does not follow...

CVE-2009-3660

The CVE-2009-3660 issue affects Efront up to version 3.5.4 in the PHP library libraries/database.php. The root cause is a remote file inclusion (RFI) vulnerability when register_globals is enabled, allowing a remote attacker to execute arbitrary PHP code via a URL supplied in the path parameter. ...

efront 3.5.4 Remote File Inclusion

efront = 3.5.4 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/efrontlearning/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA file : database.php line 15 requireonce$path.'adodb/adodb.inc.php'; 3xplo!t :...

efront <= 3.5.4 (database.php path) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ======================================================================= efront = 3.5.4 database.php path Remote File Inclusion Vulnerability ======================================================================= efront = 3.5.4 Remote File...

efront 3.5.4 - &#039;database.php?path&#039; Remote File Inclusion

efront = 3.5.4 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/efrontlearning/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA file : database.php line 15 requireonce$path.'adodb/adodb.inc.php'; 3xplo!t :...

efront &lt;= 3.5.4 (database.php path) Remote File Inclusion Vulnerability

No description provided by source. efront = 3.5.4 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/efrontlearning/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA file : database.php line 15...

efront 3.5.4 - database.php?path Remote File Inclusion

efront 3.5.4 - database.php?path Remote File Inclusion efront = 3.5.4 Remote File Include Vulnerability Download Script : http://sourceforge.net/projects/efrontlearning/files/ Author : cr4wl3r Contact : cr4wl3r4tlinuxmaildotorg Location : Gorontalo - INDONESIA file : database.php line 15...

CVE-2008-7026

Unrestricted file upload vulnerability in filesystem3.class.php in eFront 3.5.1 build 2710 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension as an avatar, then accessing it via a direct request to the file in 1 student/avatars/ or 2...

Unrestricted file upload

Unrestricted file upload vulnerability in filesystem3.class.php in eFront 3.5.1 build 2710 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension as an avatar, then accessing it via a direct request to the file in 1 student/avatars/ or 2...

CVE-2008-7026

Unrestricted file upload vulnerability in filesystem3.class.php in eFront 3.5.1 build 2710 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension as an avatar, then accessing it via a direct request to the file in 1 student/avatars/ or 2...

CVE-2008-7026

CVE-2008-7026 describes an unrestricted file-upload vulnerability in eFront (version 3.5.1 build 2710 and earlier) where an attacker can upload a file with an executable extension as a user avatar via the filesystem3.class.php upload process, and then access it through a direct request to the fil...

Remote File Inclusion Vulnerability

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- eFront = 3.5.1 / build 2710: Remote File Inclusion Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: eFront $ File affected: studentpage.php / professorpage $ Version: 3.5.1 / build 2710 $...

eFront &lt;= 3.5.1 / build 2710 Remote Arbitrary Upload Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- eFront = 3.5.1 / build 2710: Remote File Inclusion Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: eFront $ File affected: studentpage.php / professorpag...