22 matches found
EUVD-2021-0554
Malware in sbrugna...
EUVD-2015-0742
Malware in sbrugna...
EUVD-2005-3547
Malware in sbrugna...
EUVD-2009-0963
Malware in sbrugna...
EUVD-2006-4592
Malware in sbrugna...
EUVD-2024-27114
Malicious code in bioql PyPI...
PT-2025-27123 · Unknown · Thembay Diza
Name of the Vulnerable Software and Affected Versions: thembay Diza versions 1.3.9 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusion. This ...
PT-2025-24535 · Unknown · Unfoldwp Magze
Name of the Vulnerable Software and Affected Versions: Unfoldwp Magze versions 1.0.9 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability, which allows PHP Local File...
CVE-2020-29227
An issue was discovered in Car Rental Management System 1.0. An unauthenticated user can perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, to cause local file inclusion resulting in code execution...
CVE-2025-2982
A vulnerability, which was classified as critical, was found in Legrand SMS PowerView 1.x. Affected is an unknown function. The manipulation of the argument redirect leads to file inclusion. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used...
CVE-2023-1274 Pricing Tables For WPBakery Page Builder < 3.0 - Subscriber+ LFI
The Pricing Tables For WPBakery Page Builder formerly Visual Composer WordPress plugin before 3.0 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users such as subscriber to perform LFI attacks...
Remote code execution
An issue was discovered in Car Rental Management System 1.0. An unauthenticated user can perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, to cause local file inclusion resulting in code execution...
CVE-2020-29227
CVE-2020-29227 affects Car Rental Management System 1.0. An unauthenticated user can perform a local file inclusion via the /index.php page by supplying a partial filename in the page parameter, resulting in remote code execution on the server. This vulnerability is corroborated by multiple sourc...
CVE-2020-29227
An issue was discovered in Car Rental Management System 1.0. An unauthenticated user can perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, to cause local file inclusion resulting in code execution...
LibreHealth 2.0.0 - (Authenticated) Arbitrary File Actions
Exploit Title: LibreHealth 2.0.0 - Arbitrary File Actions Date: 2018-10-19 Exploit Author: Carlos Avila Vendor Homepage: https://librehealth.io/ Software Link: https://github.com/LibreHealthIO/lh-ehr Version: 2.0.0 Tested on: Debian LAMP, LibreHealth 2.0.0 LibreHealth is the 'fork' of the OpenEMR...
SOLIDserver <= 5.0.4 - Local File Inclusion
Exploit for php platform in category web applications Title: SOLIDserver =5.0.4 - Local File Inclusion Vunerability Author: Saeed reza Zamanian penetrationtest @ Linkedin Product: SOLIDserver Tested Version: : 5.0.4 and 4.0.2 Vendor: efficient IP http://www.efficientip.com Google Dork: SOLIDserve...
CVE-2015-0683
Cisco Unified Communications Domain Manager 8.1(4) is affected by CVE-2015-0683, where an authenticated, remote attacker can disclose sensitive information via a file-inclusion attack. The root cause is described as an unspecified condition enabling local file inclusion. Impact is information dis...
OpenGoo 1.1 - Local File Inclusion
OpenGoo 1.1 - Local File Inclusion OpenGoo 1.1 Local File Inclusion http://www.opengoo.org/ magicquotesgpc = Off registerglobals = On http://site/opengoo/public/upgrade/index.php POST: formdatascriptclass=/../../../../../../../../../../../etc/passwd%00.html Author Notified: Jan. 18...
TopperMod 1.0 - mod.php Local File Inclusion
TopperMod 1.0 - mod.php Local File Inclusion Author: GiReX mySite: girex.altervista.org CMS: TopperMod v1.0 Site: rtcw.ch/mio/index.php Bug: Local File Inclusion File: mod.php Var : $to Bug explanation - Vuln Code: if isset$GET'mod' $mod = stripslashes$GET'mod'; else header"location index.php";...
[SA21574] Mambo bigAPE-Backup Component File Inclusion Vulnerability
TITLE: Mambo bigAPE-Backup Component File Inclusion Vulnerability SECUNIA ADVISORY ID: SA21574 VERIFY ADVISORY: http://secunia.com/advisories/21574/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: bigAPE-Backup 1.x component for Mambo http://secunia.com/product/11615/...