b2evolution 1.8.5 - 1.9b (import-mt.php) Remote File Include Vulnerability

No description provided by source. Severity: High Title: b2evolution Remote File inclusion Vulnerability Date: 28.11.06 Author: tarkus tarkus at tiifp dot org Web: https://tiifp.org/tarkus Vendor: b2evolution http://b2evolution.net/ Affected Products: b2evolution 1.8.5 - 1.9 beta - - - - - - - - ...

B2Evolution Import-MT.PHP远程文件包含漏洞

B2Evolution是一款基于php的WEB应用程序。 B2Evolution不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Import-MT.PHP'脚本对用户提交的'incpath'参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 b2evolution b2evolution 1.8.5 b2evolution b2evolution 1.9 beta b2evolution b2evolution 1.9 http://b2evolution.net/index.html...

b2evolution 1.8.5 - 1.9b (import-mt.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ========================================================================== b2evolution 1.8.5 - 1.9b import-mt.php Remote File Include Vulnerability ========================================================================== Severity: High...

b2evolution 1.8.5 1.9b - import-mt.php Remote File Inclusion

b2evolution 1.8.5 1.9b - import-mt.php Remote File Inclusion Severity: High Title: b2evolution Remote File inclusion Vulnerability Date: 28.11.06 Author: tarkus tarkus at tiifp dot org Web: https://tiifp.org/tarkus Vendor: b2evolution http://b2evolution.net/ Affected Products: b2evolution 1.8.5 -...

b2evolution 1.8.5 < 1.9b - 'import-mt.php' Remote File Inclusion

Severity: High Title: b2evolution Remote File inclusion Vulnerability Date: 28.11.06 Author: tarkus tarkus at tiifp dot org Web: https://tiifp.org/tarkus Vendor: b2evolution http://b2evolution.net/ Affected Products: b2evolution 1.8.5 - 1.9 beta - - - - - - - - - - - - - - - - - - - - - - - - - -...

Debian DSA-1025-1 : dia - programming error

'infamous41md' discovered three buffer overflow errors in the xfig import code of dia, a diagram editor, that can lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securit...

phpBB Import Tools Mod <= 0.1.4 Remote File Include Vulnerability

Title: phpBB Import Tools Mod = 0.1.4 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Import Tools Mod = 0.1.4 Literally shouts to: str0ke and henrik Don't promote Google-ism! Vulnerable Code:...

phpBB Import Tools Mod <= 0.1.4 Remote File Include Vulnerability

No description provided by source. Title: phpBB Import Tools Mod = 0.1.4 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Import Tools Mod = 0.1.4 Literally shouts to: str0ke and henrik Don't promote...

phpBB Import Tools Mod <= 0.1.4 Remote File Include Vulnerability

Exploit for unknown platform in category web applications ================================================================= phpBB Import Tools Mod = 0.1.4 Remote File Include Vulnerability ================================================================= Title: phpBB Import Tools Mod = 0.1.4...

phpBB Import Tools Mod 0.1.4 - Remote File Inclusion

Title: phpBB Import Tools Mod = 0.1.4 phpbbrootpath Remote File Inclusion Author/Discovery: boecke Vulnerability Type: Remote File Inclusion Risk: High Risk Software Affected: phpBB Import Tools Mod = 0.1.4 Literally shouts to: str0ke and henrik Don't promote Google-ism! Vulnerable Code:...

The cafe's invasion and the cafe boss fight-bug warning-the black bar safety net

We're and the owner of the cafe fight to the end to succeed must know ourselves to win every battle. First let's take a look at the cafe owners now generally under some kind of obstacle to it: The primary 1． Prohibition of“Run”; 2． The prohibition of the use of the menu bar on the right keys; 3．...

OpenCms < 6.2.2 Multiple Vulnerabilities

The remote host is running OpenCms, a Java-based content management system. According to its banner, the version of OpenCms installed on the remote host reportedly allows authenticated users to upload OpenCms modules and database import/export files, download arbitrary files, send messages to all...

Redaxo CMS <= 3.2 (INCLUDE_PATH) Remote File Include Vulnerabilities

Exploit for unknown platform in category web applications ==================================================================== Redaxo CMS = 3.2 INCLUDEPATH Remote File Include Vulnerabilities ==================================================================== Script: Redaxo CMS Redaxo 3.2 - 3.1 ...

Moderate: Red Hat Security Advisory: Red Hat Directory Server 7.1 security update

An updated redhat-ds package containing a number of fixes is now available as Red Hat Directory Server 7.1 Service Pack 2. This update has been rated as having a moderate security impact by the Red Hat Security Response Team. Red Hat Directory Server is an LDAPv3 compliant server. For the latest...

FreeBSD : dia -- XFig Import Plugin Buffer Overflow (b5fc63ad-c4c3-11da-9699-00123ffe8333)

Secunia reports : Some vulnerabilities have been reported in Dia, which potentially can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to boundary errors within the XFig import plugin. This can be exploited to cause buffer overflows and may allo...

Dia multiple buffer overflows

Multiple buffer overflows in the xfig import code xfig-import.c in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid 1 color index, 2 number of points, or 3 depth...

DSA-1025-1 dia - programming error

Bulletin has no description...

vBulletin174.txt

======================================================================================= XOR Crew :: Security Advisory 3/22/2006 ======================================================================================= vBulletin ImpEx = 1.74 - Remote Command Execution Vulnerability...

dia -- XFig Import Plugin Buffer Overflow

Secunia reports: Some vulnerabilities have been reported in Dia, which potentially can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to boundary errors within the XFig import plugin. This can be exploited to cause buffer overflows and may allow...

CVE-2006-1550

Multiple buffer overflows in the xfig import code xfig-import.c in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid 1 color index, 2 number of points, or 3 depth...