EasySite 2.0 - image_editor.php Remote File Inclusion

EasySite 2.0 - imageeditor.php Remote File Inclusion source: https://www.securityfocus.com/bid/28563/info EasySite is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...

EasySite 2.0 - skin_chooser.php Remote File Inclusion

EasySite 2.0 - skinchooser.php Remote File Inclusion source: https://www.securityfocus.com/bid/28563/info EasySite is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...

Terracotta - index.php Local File Inclusion

Terracotta - index.php Local File Inclusion source: https://www.securityfocus.com/bid/28550/info Terracotta is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to vie...

Terracotta - 'index.php' Local File Inclusion

source: https://www.securityfocus.com/bid/28550/info Terracotta is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view local files in the context of the webserve...

mxbbmxblogs-rfi.txt

mxBB Module mxblogs 2.0.0-beta Remote File Include Exploit Vendor: http://www.mx-system.com Download: http://www.mx-system.com/index.php?page=4&action=file&fileid=405 Vulncode in: /includes/functionsweblog.php line 24 Greetz: str0ke, TheJT, rgod, Vallani, DNX, NBBN use Getopt::Long; use...

CVE-2008-1555

CVE-2008-1555 affects BolinOS 4.6.1, vulnerability in system/_b/contentFiles/gbincluder.php where ".." in _bFileToInclude enables directory traversal to include/execute local files. Impact: partial confidentiality, integrity, and availability. CVSS v2 base score 6.8. no remediation details provid...

jshop-lfi.txt

JShop 1.x-2.x local file include --------------------------------------------------------------------------------------------------------------------- + scripts: Jshop Server 1.x-2.x + + Discovered By : v0l4arrra + + url: www.jshop.co.uk + + dork: "powered by jshop" and also usefull one...

kisgb-lfi.txt

KISGB Keep It Simple Guest Book : Local FiLe Include's tmptheme Version : All Versions Download : http://sourceforge.net/project/showfiles.php?groupid=38585 ---------------------------------------------------------- Exploit coded and founded by Cr@zyKing Date: 30.03.2008 [email protected]...

JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. ┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rise...

jafcms-rfi.txt

┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐...

GeeCarts - view.php?id Cross-Site Scripting

GeeCarts - view.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/28470/info GeeCarts is prone to multiple input-validation vulnerabilities, including remote file-include and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting...

GeeCarts - search.php?id Cross-Site Scripting

GeeCarts - search.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/28470/info GeeCarts is prone to multiple input-validation vulnerabilities, including remote file-include and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploitin...

pjirc-lfi.txt

/ PJIRC mod phpBB Local File Include Discrovered by: 0in from DaRk-CodeRs Programming & Security Group! Contact: 0indotemailatgmaildotcom Description: This is a simply irc applet to phpbb. Download: http://www.hotscripts.pl/produkt-1998.html HTTP://Dark-Coders.4rh.eu Greetz to: All DaRk-CodeRs Te...

DSECRG-08-022.txt

Digital Security Research Group DSecRG Advisory DSECRG-08-022 Application: BolinOS Versions Affected: 4.6.1 Vendor URL: http://www.bolinos.com Bugs: Local File Include,Multiple XSS, System information disclosure Exploits: YES Reported: 13.03.2008 Second report: 18.03.2008 Vendor response: none...

BolinOS 4.6.1 (LFI/XSS) Multiple Security Vulnerabilities

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-022 Application: BolinOS Versions Affected: 4.6.1 Vendor URL: http://www.bolinos.com Bugs: Local File Include,Multiple XSS, System information disclosure Exploits: YES Reported: 13.03.2008 Second report:...

GeeCarts - 'search.php?id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28470/info GeeCarts is prone to multiple input-validation vulnerabilities, including remote file-include and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to...

GeeCarts - show.php?id Cross-Site Scripting

GeeCarts - show.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/28470/info GeeCarts is prone to multiple input-validation vulnerabilities, including remote file-include and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting...

JAF CMS 4.0 RC2 - Multiple Remote File Inclusions

JAF CMS 4.0 RC2 - Multiple Remote File Inclusions ??????????????????????????????????????????????????????????????????????????????? ?? C r a C k E r ?? ?? T H E C R A C K O F E T E R N A L M I G H T ?? ?????????????????????????????????????????????????????????????????????????????? ????? From The Ash...

JAF CMS 4.0 RC2 - Multiple Remote File Inclusions

??????????????????????????????????????????????????????????????????????????????? ?? C r a C k E r ?? ?? T H E C R A C K O F E T E R N A L M I G H T ?? ?????????????????????????????????????????????????????????????????????????????? ????? From The Ashes and Dust Rises An Unimaginable crack.... ?????...

[DSECRG-08-022] Multiple Security Vulnerabilities in Bolinos 4.6.1

Digital Security Research Group DSecRG Advisory DSECRG-08-022 Application: BolinOS Versions Affected: 4.6.1 Vendor URL: http://www.bolinos.com Bugs: Local File Include,Multiple XSS, System information disclosure Exploits: YES Reported: 13.03.2008 Second report: 18.03.2008 Vendor response: none...