CVE-2007-5589

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.11.1.2 allow remote attackers to inject arbitrary web script or HTML via certain input available in 1 PHPSELF in a serverstatus.php, and b grabglobals.lib.php, c displaychangepassword.lib.php, and d common.lib.php in...

CVE-2007-0395

PHP remote file inclusion vulnerability in libraries/grabglobals.lib.php in ComVironment 4.0 allows remote attackers to execute arbitrary PHP code via a URL in the incdir parameter...

Remote file inclusion

PHP remote file inclusion vulnerability in libraries/grabglobals.lib.php in ComVironment 4.0 allows remote attackers to execute arbitrary PHP code via a URL in the incdir parameter...

ComVironment 4.0 (grab_globals.lib.php) Remote File Include Vulnerability

No description provided by source. /\ ComVironment 4.0 ========================================================= Published : 2007-01-18 Remote: Yes Site:http://switch.dl.sourceforge.net/sourceforge/comvironment/ Author: GolDM = Mahmoodali &...

ComVironment 4.0 (grab_globals.lib.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ========================================================================= ComVironment 4.0 grabglobals.lib.php Remote File Include Vulnerability ========================================================================= /\ ComVironment 4.0...

ComVironment 4.0 - 'grab_globals.lib.php' Remote File Inclusion

/\ ComVironment 4.0 ========================================================= Published : 2007-01-18 Remote: Yes Site:http://switch.dl.sourceforge.net/sourceforge/comvironment/ Author: GolDM = Mahmoodali Contact: [email protected] ===================================================== ThanX=All My...

ComVironment 4.0 - grab_globals.lib.php Remote File Inclusion

ComVironment 4.0 - grabglobals.lib.php Remote File Inclusion /\ ComVironment 4.0 ========================================================= Published : 2007-01-18 Remote: Yes Site:http://switch.dl.sourceforge.net/sourceforge/comvironment/ Author: GolDM = Mahmoodali Contact: [email protected]...

GLSA-200510-21 : phpMyAdmin: Local file inclusion and XSS vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200510-21 phpMyAdmin: Local file inclusion and XSS vulnerabilities Stefan Esser discovered that by calling certain PHP files directly, it was possible to workaround the grabglobals.lib.php security model and overwrite the $cfg...

CVE-2005-3299

PHP file inclusion vulnerability in grabglobals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $redirect parameter, possibly involving the subform array...

phpMyAdmin grab_globals.lib.php subform Parameter Traversal Local File Inclusion

The version of phpMyAdmin installed on the remote host allows attackers to read and possibly execute code from arbitrary files on the local host because of its failure to sanitize the parameter 'subform' before using it in the 'libraries/grabglobals.lib.php' script. %NASLMINLEVEL 70300 C Tenable...

phpmyadmin -- local file inclusion vulnerability

A phpMyAdmin security announcement reports: In libraries/grabglobals.lib.php, the $redirect parameter was not correctly validated, opening the door to a local file inclusion attack. We consider this vulnerability to be serious...

[Full-disclosure] phpMyAdmin Local file inclusion 2.6.4-pl1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpMyAdmin Local file inclusion 2.6.4-pl1 Author: Maksymilian Arciemowicz cXIb8O3 .18 Date: 10.10.2005 from SECURITYREASON.COM - --- 0.Description --- phpMyAdmin 2.6.4 is a tool written in PHP intended to handle the administration of MySQL over the We...