4 matches found
Guppy <= 4.5.9 (REMOTE_ADDR) Remote Commands Execution Exploit
No description provided by source. ?php if magicquotesgpc is off you can inject arbitrary php code from rgod /str0ke ---guppy459xpl.php 17.30 28/11/2005 Guppy =4.5.9 SERVERREMOTEADDR overwrite / remote commands xctn coded by rgod site: http://rgod.altervista.org usage: launch from Apache, fill in...
CVE-2005-3926
Direct static code injection vulnerability in error.php in GuppY 4.5.9 and earlier, when registerglobals is disabled, allows remote attackers to execute arbitrary PHP code via the SERVERREMOTEADDR parameter, which is injected into a .inc script that is later included by the main script...
CVE-2005-3927
Multiple directory traversal vulnerabilities in GuppY 4.5.9 and earlier allow remote attackers to read and include arbitrary files via 1 the meskin parameter to admin/editorTypetool.php, or the lng parameter to the in admin/inc scripts 2 archbatch.php, 3 dbbatch.php, and 4 nwlmail.php...
Guppy 4.5.9 - REMOTE_ADDR Remote Command Execution
Guppy 4.5.9 - REMOTEADDR Remote Command Execution Guppy body background-color:111111; SCROLLBAR-ARROW-COLOR: ffffff; SCROLLBAR-BASE-COLOR: black; CURSOR: crosshair; color: 1CB081; img backgro...