CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29 matches found

Prion•added 2006/02/19 9:2 p.m.•10 views

Remote file inclusion

PHP remote file inclusion vulnerability in index.php in DreamCost HostAdmin allows remote attackers to include arbitrary files via the $path variable, which is not initialized before use...

7.5CVSS7.1AI score0.11448EPSS

Exploits1References11Affected Software1

Cvelist•added 2006/02/19 9:0 p.m.•13 views

CVE-2006-0791

PHP remote file inclusion vulnerability in index.php in DreamCost HostAdmin allows remote attackers to include arbitrary files via the $path variable, which is not initialized before use...

6.8AI score0.11448EPSS

Exploits1References11

CVE•added 2006/02/19 9:0 p.m.•48 views

CVE-2006-0791

DreamCost HostAdmin (vulnerable up to 3.1 and earlier) is affected by a PHP remote file inclusion via index.php. The root cause is an uninitialized $path variable used by index.php, allowing an attacker to include arbitrary files. Related records note that the index.php vector is covered by CVE-2...

7.5CVSS6.8AI score0.11448EPSS

Exploits1References11Affected Software1

exploitpack•added 2006/02/16 12:0 a.m.•11 views

Dreamcost HostAdmin 3.0 - index.php Remote File Inclusion

Dreamcost HostAdmin 3.0 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/16682/info HostAdmin is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue ...

0.2AI score

Exploits0

Exploit DB•added 2006/02/16 12:0 a.m.•21 views

Dreamcost HostAdmin 3.0 - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/16682/info HostAdmin is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious P...

7.4AI score

Exploits0

securityvulns•added 2006/02/16 12:0 a.m.•29 views

[Full-disclosure] HostAdmin - Remote Command Execution Vulnerability

======================================================================================= XOR Crew :: Security Advisory 2/11/2006 ======================================================================================= HostAdmin - Remote Command Execution Vulnerability...

7.4AI score

Exploits0

securityvulns•added 2003/08/14 12:0 a.m.•32 views

ZH2003-23SA (security advisory): HostAdmin Path Disclosure

ZH2003-23SA security advisory: HostAdmin Path Disclosure Published: 12 august 2003 Released: 12 august 2003 Name: HostAdmin Affected Systems: current version Issue: Remote attackers can know the path of the site Author: [email protected] Vendor: http://dreamcost.com/?page=hostadmin Description...

0.9AI score

Exploits0

exploitpack•added 2003/08/12 12:0 a.m.•12 views

HostAdmin - Full Path Disclosure

HostAdmin - Full Path Disclosure source: https://www.securityfocus.com/bid/8401/info HostAdmin is prone to a path disclosure vulnerability. Passing invalid data to the HostAdmin site will cause an error message to be displayed, which contains installation path information...

7.4AI score

Exploits0

Exploit DB•added 2003/08/12 12:0 a.m.•29 views

HostAdmin - Full Path Disclosure

source: https://www.securityfocus.com/bid/8401/info HostAdmin is prone to a path disclosure vulnerability. Passing invalid data to the HostAdmin site will cause an error message to be displayed, which contains installation path information. http://www.example.com/pathofhostadmin/?page='...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by