9 matches found
AllMyGuests <= 0.3.0 (AMG_serverpath) Remote Inclusion Vulnerabilities
No description provided by source. AllMyGuests 3.0 Remote File Inclusion Vulnerability Software: AllMyGuests Version: 3.0 Download: http://download.php-resource.net/AllMyGuests/AllMyGuests0.3.0.zip Found By: beks Bug In: /include/submit.inc.php /admin/index.php /include/cmsubmit.inc.php...
MyPHP CMS global_header.php远程文件包含漏洞
BUGTRAQ ID: 18834 MyPHP CMS是基于PHP的开放源码内容管理系统。 MyPHP CMS实现上存在输入验证漏洞,远程攻击者可能利用此漏洞在服务器上执行任意命令。 在MyPHP CMS的globalheader.php文件中没有正确地检查过滤$domain变量,如果registerglobals=on的话,远程攻击者就可以利用简单的PHP代码注入脚本执行任意命令。 MyPHP CMS = 0.3 MyPHP CMS --------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Web-Provence SL_Site Spaw_control.class.PHP参数远程文件包含漏洞
Web-Provence SLSite是一款基于PHP的WEB应用程序。 Web-Provence SLSite不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Spawcontrol.class.PHP'脚本对用户提交的'spawroot'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Web-Provence SLsite 1.0 目前没有解决方案提供,请关注以下链接: http://www.web-provence.org/...
NuralStorm Webmail <= 0.98b (process.php) Remote Include Vulnerability
Exploit for unknown platform in category web applications ====================================================================== NuralStorm Webmail = 0.98b process.php Remote Include Vulnerability ======================================================================...
AROUNDMe 0.5.2 - 'templatePath' Remote File Inclusion
--------------------------------------------------------------------------- AROUNDMe = 0.5.2 templatePath Remote File Include Vulnerability --------------------------------------------------------------------------- Discovered By Kw3RLn Romanian Security Team : hTTp://RST-CREW.net : Remote : Yes...
IncCMS Core <= 1.0.0 (settings.php) Remote File Include Vulnerability
No description provided by source. ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+ +:+:+ +:+ ++...
BBaCE <= 3.5 (includes/functions.php) Remote File Include Vulnerability
/ ,, / / '-./.-' .--' '--. / / /"" SpiderZ Hacking Security | | | | / / '..' Author: SpiderZ BBaCE Remote File Inclusion Vulnerability For: BBaCE v3 Bulletin Board Ace Site: www.spiderz.altervista.org Site02: www.spiderz.netsons.org...
phpBB Shadow Premod <= 2.7.1 Remote File Include Vulnerability
No description provided by source. --------------------------------------------------------------------------- Shadow Prémod = 2.7.1 phpbbrootpath Remote File Include Vulnerability --------------------------------------------------------------------------- Discovered By Kw3RLn Romanian Security...
CaLogic Calendars 1.2.2 - CLPath Remote File Inclusion
CaLogic Calendars 1.2.2 - CLPath Remote File Inclusion DEVIL TEAM THE BEST POLISH TEAM CaLogic Calendars V1.2.2 - Remote File Include Find by Kacper Rahim. Greetings For ALL DEVIL TEAM members, Special DragonHeart : Contact: [email protected] or http://www.devilteam.yum.pl dork: CaLogic Calenda...