Custom Pages for Joomla! 'cpage' Parameter Local File Include

The version of the Custom Pages component for Joomla! running on the remote host is affected by a local file include vulnerability due to improper sanitization of user-supplied input to the 'cpage' parameter before using it in the custompages.php script to include PHP code. Regardless of the PHP...

PowerBook 1.21 (index.php page) Local File Inclusion Vulnerability

No description provided by source. DSECRG-08-019 Digital Security Research Group DSecRG Advisory Application: PowerBook Versions Affected: 1.21 Vendor URL: http://www.powerscripts.org/ Bug: Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none Solution: none Date of Public...

PowerPHPBoard 1.00b Multiple Local File Inclusion Vulnerabilities

No description provided by source. DSECRG-08-021 Digital Security Research Group DSecRG Advisory Application: PowerPHPBoard Versions Affected: 1.00b Vendor URL: http://www.powerscripts.org/ Bug: Multiple Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none Solution: none Da...

BolinOS 4.6.1 (LFI/XSS) Multiple Security Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= BolinOS 4.6.1 LFI/XSS Multiple Security Vulnerabilities ========================================================= Digital Security Research Group DSecRG Advisory DSECRG-08-022...

BolinOS 4.6.1 - Local File Inclusion / Cross-Site Scripting

Digital Security Research Group DSecRG Advisory DSECRG-08-022 Application: BolinOS Versions Affected: 4.6.1 Vendor URL: http://www.bolinos.com Bugs: Local File Include,Multiple XSS, System information disclosure Exploits: YES Reported: 13.03.2008 Second report: 18.03.2008 Vendor response: none...

Quick Classifieds 1.0 - controlpannelalterTheme.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - controlpannelalterTheme.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...

Quick Classifieds 1.0 - controlcenterremember.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - controlcenterremember.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issu...

Quick Classifieds 1.0 - 'controlpannel/alterTheme.php3?DOCUMENT_ROOT' Remote File Inclusion

source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; othe...

[DSECRG-08-019] LFI in PowerBook 1.21

Hello, bugtraq. DSECRG-08-031 Digital Security Research Group DSecRG Advisory Application: PowerBook Versions Affected: 1.21 Vendor URL: http://www.powerscripts.org/ Bug: Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none Solution: none Date of Public Advisory: ..2008...

DSECRG-08-021.txt

DSECRG-08-021 Digital Security Research Group DSecRG Advisory Application: PowerPHPBoard Versions Affected: 1.00b Vendor URL: http://www.powerscripts.org/ Bug: Multiple Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none Solution: none Date of Public Advisory: 24.03.2008...

Quick Classifieds 1.0 - includesendit2.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - includesendit2.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may...

Le Forum - Fichier_Acceuil Remote File Inclusion

Le Forum - FichierAcceuil Remote File Inclusion source: https://www.securityfocus.com/bid/28423/info Le Forum is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute malicious PHP code in the context ...

Quick Classifieds 1.0 - controlpannelcreateNews.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - controlpannelcreateNews.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...

Quick Classifieds 1.0 - controlpannelcreateT.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - controlpannelcreateT.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issue...

Quick Classifieds 1.0 - controlcenteruserSet.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - controlcenteruserSet.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issue...

DSECRG-08-19.txt

Hello, bugtraq. DSECRG-08-031 Digital Security Research Group DSecRG Advisory Application: PowerBook Versions Affected: 1.21 Vendor URL: http://www.powerscripts.org/ Bug: Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none Solution: none Date of Public Advisory: ..2008...

Quick Classifieds 1.0 - controlcenterupdate.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - controlcenterupdate.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues...

Quick Classifieds 1.0 - controlpannelcreatedb.php3?DOCUMENT_ROOT Remote File Inclusion

Quick Classifieds 1.0 - controlpannelcreatedb.php3?DOCUMENTROOT Remote File Inclusion source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issu...

Quick Classifieds 1.0 - 'controlcenter/manager.php3?DOCUMENT_ROOT' Remote File Inclusion

source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; othe...

PowerPHPBoard 1.00b - Multiple Local File Inclusions

PowerPHPBoard 1.00b - Multiple Local File Inclusions DSECRG-08-021 Digital Security Research Group DSecRG Advisory Application: PowerPHPBoard Versions Affected: 1.00b Vendor URL: http://www.powerscripts.org/ Bug: Multiple Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none...