EUVD-2006-5906

Malware in sbrugna...

GTCatalog 0.8.16/0.9 - Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6998/info GTCatalog is prone to an issue that may allow remote attackers to include files located on attacker-controlled servers. This vulnerability is as a result of insufficient sanitization performed on remote user...

CVE-2006-5923

PHP remote file inclusion vulnerability in index.php in Chris Mac gtcatalog aka GimeScripts Shopping Catalog 0.9.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the custom parameter...

CVE-2006-5923

CVE-2006-5923 affects Chris Mac gtcatalog (aka GimeScripts Shopping Catalog) 0.9.1 and earlier. The flaw is a PHP remote file inclusion in index.php, allowing an attacker to cause arbitrary PHP code execution by supplying a URL in the custom parameter. This is a remote inclusion/vector with netwo...

gtcatalog 0.9.1 - index.php Remote File Inclusion

gtcatalog 0.9.1 - index.php Remote File Inclusion ============================================================================================= Shopping Catalog RFI ============================================================================================= Info:- Scripts: ShoppingCatalog downlo...

gtcatalog <= 0.9.1 (index.php) Remote File Include Vulnerability

============================================================================================= Shopping Catalog RFI ============================================================================================= Info:- Scripts: ShoppingCatalog download :...

gtcatalog 0.9.1 - 'index.php' Remote File Inclusion

============================================================================================= Shopping Catalog RFI ============================================================================================= Info:- Scripts: ShoppingCatalog download :...

gtcatalog <= 0.9.1 (index.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ================================================================ gtcatalog www.xp10.com SpeciaL PoweR SecuritY TeaM www.specialpower.org Greetz to : | abushahad | RooT-shilL | hitlerjeddah | BooB11 | FaTaL | | ThE-WoLf-KsA | mohandko |...

GTcatalog password.inc Direct Request Password Disclosure

The remote web server hosts GTcatalog, a catalog management system written in PHP. It is possible to obtain the password of the remote GTcatalog installation by directly requesting the file 'password.inc'. An attacker may leverage this issue to obtain the password and gain administrative access t...

GTcatalog index.php custom Parameter Remote File Inclusion

It is possible to make the remote host include PHP files hosted on a third-party server using GTcatalog. An attacker may use this flaw to inject arbitrary code in the remote host and gain a shell with the privileges of the web server. In addition, making a direct request for 'password.inc' may...

GTCatalog 0.8.16/0.9 - Remote File Inclusion

source: https://www.securityfocus.com/bid/6998/info GTCatalog is prone to an issue that may allow remote attackers to include files located on attacker-controlled servers. This vulnerability is as a result of insufficient sanitization performed on remote user supplied data. Under some...

GTCatalog 0.8.160.9 - Remote File Inclusion

GTCatalog 0.8.160.9 - Remote File Inclusion source: https://www.securityfocus.com/bid/6998/info GTCatalog is prone to an issue that may allow remote attackers to include files located on attacker-controlled servers. This vulnerability is as a result of insufficient sanitization performed on remot...