4 matches found
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in EncapsCMS 0.3.6 allow remote attackers to execute arbitrary PHP code via a URL in the 1 configpath parameter to a commonfoot.php or b blogs.php, or 2 the configtheme parameter to c admin/galleryhead.php...
CVE-2006-5895
CVE-2006-5895 affects EncapsCMS 0.3.6, where the PHP vulnerability resides in core/core.php. An attacker can cause a remote file inclusion by supplying a URL in the root parameter, allowing execution of arbitrary PHP code on affected systems. The issue is described in multiple sources as a PHP re...
encapscms036.txt
Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php"; includeonce$root."core/DBsql.php";...
encapscms 0.3.6 - Remote File Include by Firewall
Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php"; includeonce$root."core/DBsql.php";...