19 matches found
EUVD-2006-5748
Malware in sbrugna...
Erbium stealer on the hunt for data
Theres a new slice of malware-as-a-service doing the rounds, although its actual newness is somewhat contested. The stealer, called Erbium, was first spotted on forums back in July 2022, but it seems nobody is quite sure when it started being deployed and snagging victims. Nevertheless, it is now...
Free File Hosting <= 1.1 (forgot_pass.php) File Include Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' | \\ | \\ | \ . . |\ \ \ /\ \ / /| || | | | | \ | \ Y / | || | | \ | \ \ / | || | |/ // / / ||| \ | / / \ / \ |\ /\ / / \ / \ | | | | / /\ \ / \ / \ | | | | / | / Y \ || / /| /| /...
Free File Hosting forgot_pass.php AD_BODY_TEMP Parameter PHP Code Execution - Ver2 (CVE-2006-5762)
A code execution vulnerability has been reported in Free File Hosting. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Free File Hosting forgot_pass.php AD_BODY_TEMP Parameter PHP Code Execution - Ver2 (CVE-2006-5762)
A code execution vulnerability has been reported in Free File Hosting. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Free File Hosting System 1.1 - contact.php?AD_BODY_TEMP Remote File Inclusion
Free File Hosting System 1.1 - contact.php?ADBODYTEMP Remote File Inclusion source: https://www.securityfocus.com/bid/23118/info Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may all...
Free File Hosting System 1.1 - login.php?AD_BODY_TEMP Remote File Inclusion
Free File Hosting System 1.1 - login.php?ADBODYTEMP Remote File Inclusion source: https://www.securityfocus.com/bid/23118/info Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow...
Free File Hosting System 1.1 - register.php?AD_BODY_TEMP Remote File Inclusion
Free File Hosting System 1.1 - register.php?ADBODYTEMP Remote File Inclusion source: https://www.securityfocus.com/bid/23118/info Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may...
Free File Hosting System 1.1 - 'login.php?AD_BODY_TEMP' Remote File Inclusion
source: https://www.securityfocus.com/bid/23118/info Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; othe...
Free File Hosting System 1.1 - 'contact.php?AD_BODY_TEMP' Remote File Inclusion
source: https://www.securityfocus.com/bid/23118/info Free File Hosting is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; othe...
CVE-2006-5764
PHP remote file inclusion vulnerability in contact.php in Free File Hosting 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informatio...
CVE-2006-5763
Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1.1, and possibly earlier, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter to 1 login.php, 2 register.php, or 3 send.php. NOTE: the original provenan...
CVE-2006-5762
PHP remote file inclusion vulnerability in forgotpass.php in Free File Hosting 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: this issue was later reported for the "File Upload System" which is a component of Free File Hosting...
CVE-2006-5764
PHP remote file inclusion vulnerability in contact.php in Free File Hosting 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informatio...
CVE-2006-5763
Multiple PHP remote file inclusion vulnerabilities in Free File Hosting 1.1, and possibly earlier, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter to 1 login.php, 2 register.php, or 3 send.php. NOTE: the original provenan...
CVE-2006-5762
PHP remote file inclusion vulnerability in forgotpass.php in Free File Hosting 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: this issue was later reported for the "File Upload System" which is a component of Free File Hosting...
CVE-2006-5763
This CVE covers PHP remote file inclusion in Free File Hosting 1.1 (and possibly earlier) where enabling register_globals allows an attacker to pass a URL in the AD_BODY_TEMP parameter to login.php, register.php, or send.php to execute arbitrary PHP code. The issue also notes that Vector 1 affect...
CVE-2006-5764
The CVE-2006-5764 entry concerns Free File Hosting (version 1.1 and earlier). The vulnerability is a PHP remote file inclusion in contact.php that allows an attacker to execute arbitrary PHP code by supplying a URL in the AD_BODY_TEMP parameter. The risk is described as affecting remote code exec...
CVE-2006-5762
CVE-2006-5762 describes a PHP remote file inclusion in forgot_pass.php (Free File Hosting 1.1 and earlier; also affects related Free File Hosting/Free Image Hosting components) where an attacker can supply a URL in the AD_BODY_TEMP parameter to execute arbitrary PHP code. The underlying issue is ...