15 matches found
EUVD-2006-2743
Malware in sbrugna...
EUVD-2006-2744
Malware in sbrugna...
F@cile Interactive Web <= 0.8x Remote (Include / XSS) Vulnerabilities
No description provided by source. F@cile Interactive Web = 0.8x Multiple Remote Vulnerabilities Contacts ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on F@cile Interactive Web = 0.8x Original advisory can be found at: http://www.nukedx.com/?viewdoc=35 File...
CVE-2006-2744
PHP remote file inclusion vulnerability in p-popupgallery.php in F@cile Interactive Web 0.8.41 through 0.8.5 allows remote attackers to execute arbitrary PHP code via a URL in the l parameter...
CVE-2006-2745
Multiple PHP remote file inclusion vulnerabilities in F@cile Interactive Web 0.8.5 and earlier, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 pathfile parameter in a p-editpage.php and b p-editbox.php, and the 2 mytheme and 3 myskin...
Remote file inclusion
PHP remote file inclusion vulnerability in p-popupgallery.php in F@cile Interactive Web 0.8.41 through 0.8.5 allows remote attackers to execute arbitrary PHP code via a URL in the l parameter...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in F@cile Interactive Web 0.8.5 and earlier, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 pathfile parameter in a p-editpage.php and b p-editbox.php, and the 2 mytheme and 3 myskin...
CVE-2006-2746
Multiple cross-site scripting XSS vulnerabilities in F@cile Interactive Web 0.8.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 lang parameter in index.php, and the 2 mytheme and 3 myskin parameters in multiple "p-themes" index.inc.php files including c...
CVE-2006-2746
The vulnerability is in F@cile Interactive Web 0.8.5 and earlier, where multiple XSS flaws exist. Specifically, the application accepts user-supplied input through (1) lang in index.php and (2) mytheme and (3) myskin in various p-themes’ index.inc.php files (including lowgraphic, classic, puzzle,...
CVE-2006-2744
CVE-2006-2744 affects F@cile Interactive Web versions 0.8.41–0.8.5. The vulnerability is a PHP remote file inclusion via the l parameter in p-popupgallery.php, allowing remote code execution. Affected component is the PHP code path handling URL input; exploitation would grant an attacker remote P...
CVE-2006-2745
CVE-2006-2745 describes multiple PHP remote file inclusion vulnerabilities in F@cile Interactive Web 0.8.5 and earlier when register_globals is enabled. An attacker can cause arbitrary PHP code execution by specifying a URL in (1) the pathfile parameter of (a) p-editpage.php and (b) p-editbox.php...
CVE-2006-2744
PHP remote file inclusion vulnerability in p-popupgallery.php in F@cile Interactive Web 0.8.41 through 0.8.5 allows remote attackers to execute arbitrary PHP code via a URL in the l parameter...
CVE-2006-2745
Multiple PHP remote file inclusion vulnerabilities in F@cile Interactive Web 0.8.5 and earlier, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 pathfile parameter in a p-editpage.php and b p-editbox.php, and the 2 mytheme and 3 myskin...
F@cile Interactive Web 0.8x - Remote File Inclusion Cross-Site Scripting
F@cile Interactive Web 0.8x - Remote File Inclusion Cross-Site Scripting F@cile Interactive Web ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on F@cile Interactive Web = 0.8x Original advisory can be found at: http://www.nukedx.com/?viewdoc=35 File Inclusion...
F@cile Interactive Web 0.8x - Remote File Inclusion / Cross-Site Scripting
F@cile Interactive Web ICQ: 10072 MSN/Mail: [email protected] web: www.nukedx.com This exploits works on F@cile Interactive Web = 0.8x Original advisory can be found at: http://www.nukedx.com/?viewdoc=35 File Inclusion Vulnerabilities...