Directory traversal

Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter...

CVE-2008-2459

Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter...

CVE-2008-2459

Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter...

CVE-2008-2459

CVE-2008-2459 affects EntertainmentScript 1.4.0, where the vulnerable component is page.php. A directory traversal via the page parameter enables remote attackers to include and execute arbitrary local files. Root cause is a directory traversal flaw in the input handling of the page parameter. Im...

CVE-2008-2393

SQL injection vulnerability in play.php in EntertainmentScript 1.4.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2008-2393

Summary of CVE-2008-2393 (EntertainmentScript) : A SQL injection vulnerability exists in the script’s file play.php in EntertainmentScript 1.4.0. The vulnerability allows remote attackers to inject arbitrary SQL through the id parameter, potentially altering or accessing the database. Affected co...

EntertainmentScript 1.4.0 - 'play.php' SQL Injection

rEm0te SQL Injection Vulnerability EntertainmentScript V1.4.0 play.php id Script : EntertainmentScript.com V1.4.0 name script on demo site is fastfreemedia DeMo : http://demo.fastfreemedia.com/index.php AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] D0rK :: : not found -:: SQL :...