dmguest-lfi.txt

DM Guestbook = 0.4.1 Multiple Local File Include Vulnerabilities http://sourceforge.net/project/showfiles.php?groupid=101364 /guestbook.0.4.1/ POC : /guestbook.php?lng=../../../../../../../etc/passwd%00 /admin/admin.guestbook.php?lng=../../../../../../../etc/passwd%00...

Immunity Canvas: SIGE_INCLUDE

Name| sigeinclude ---|--- CVE| CVE-2007-5781 Exploit Pack| CANVAS Description| SIGE remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: pfadmin CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5781 CVE Name: CVE-2007-5781...

teatro 1.6 (basePath) Remote File Include Vulnerability

No description provided by source. teatro 1.6 Remote File Include Vulnerability Download script : http://telemat.die.unifi.it/book/2003/Telematica-II/teatro-1.6.tgz Dicovered by : Alkomandoz Hacker Contact : [email protected]...

MySpace Resource Script (MSRS) 1.21 RFI Vulnerability

Exploit for unknown platform in category web applications ===================================================== MySpace Resource Script MSRS 1.21 RFI Vulnerability ===================================================== MSRS v.1.21 Remote File Inclusion Author Site : http://www.myspacepros.com/ POC...

teatro 1.6 ( basePath ) Remote File Include Vulnerability

======================================================================== teatro 1.6 Remote File Include Vulnerability Download script : http://telemat.die.unifi.it/book/2003/Telematica-II/teatro-1.6.tgz Dicovered by : Alkomandoz Hacker Contact : [email protected]...

teatro 1.6 (basePath) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ======================================================= teatro 1.6 basePath Remote File Include Vulnerability ======================================================= teatro 1.6 Remote File Include Vulnerability Download script :...

GoSamba 1.0.1 (include_path) Multiple RFI Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= GoSamba 1.0.1 includepath Multiple RFI Vulnerabilities ========================================================= GoSamba 1.0.1 includepath Multiple Remote File Inclusion...

Directory traversal

Multiple directory traversal vulnerabilities in PHP Project Management 0.8.10 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the deflang parameter to modules/files/list.php; the mpath parameter to 2 modules/projects/summary.inc.php or 3...

Immunity Canvas: PEOPLEAGGREGATOR_INCLUDE

Name| peopleaggregatorinclude ---|--- CVE| CVE-2007-5631 Exploit Pack| CANVAS Description| peopleaggregator 1.2pre6 remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: peopleaggregator.org CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5631 CVE Name:...

Immunity Canvas: TOWEL_INCLUDE

Name| towelinclude ---|--- CVE| CVE-2007-5628 Exploit Pack| CANVAS Description| ToweLS remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: ToweLS CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5628 CVE Name: CVE-2007-5628...

reloadcms-lfi.txt

New Advisory: ReloadCMS http://reloadcms.com ——————–Summary—————- Software: ReloadCMS Sowtware’s Web Site: http://reloadcms.com/main/ Versions: 1.2.7 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote Status: Unpatched PoC/Exploit: Available Solution: Not Available Discovered b...

weather-lfi.txt

Weather for PHP Dr.2 = 4ever .... =D...

Jeebles Technology Jeebles Directory 2.9.60 - download.php Local File Inclusion

Jeebles Technology Jeebles Directory 2.9.60 - download.php Local File Inclusion source: https://www.securityfocus.com/bid/26171/info Jeebles Directory is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an...

InstaGuide Weather Script 1.0 - 'index.php' Local File Inclusion

Weather for PHP Dr.2 = 4ever .... =D milw0rm.com 2007-10-22...

InstaGuide Weather Script (index.php) Local File Inclusion Vulnerability

No description provided by source. Weather for PHP = PageName Local File Include Vulnerability Script : Weather for PHP Version : 1.0 Download : http://www.instaguide.com/download/weatherfree.zip AUTHOR : BorN To K!LL Vuln Code : $PageName = $GET'PageName'; //// this is one ... :...

CVE-2003-1426

Openwebmail in cPanel 5.0, when run using suid Perl, adds the directory in the SCRIPTFILENAME environment variable to Perl's @INC include array, which allows local users to execute arbitrary code by modifying SCRIPTFILENAME to reference a directory containing a malicious openwebmail-shared.pl...

Immunity Canvas: AWZMB_INCLUDE

Name| awzmbinclude ---|--- CVE| CVE-2007-5592 Exploit Pack| CANVAS Description| awzMB remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: awzMB CVE Url: https://vulners.com/cve/CVE-2007-5592 CVE Name: CVE-2007-5592...

Exploits CMS Creamotion - Remote File include

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? / / CMS Creamotion - Remote File include / This exploit should allow you to execute commands / By : HACKERS PAL / WwW.SoQoR.NeT / printr' // / CMS Creamotion Command Execution / / by HACKERS PAL [email protected] / / site:...

Immunity Canvas: PHPDJ_INCLUDE

Name| phpdjinclude ---|--- CVE| CVE-2007-5574 Exploit Pack| CANVAS Description| phpDJ remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: phpdj CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5574 CVE Name: CVE-2007-5574...

SiteBar 3.3.8 - translator.php?updcmdActionedit Arbitrary PHP Code Execution

SiteBar 3.3.8 - translator.php?updcmdActionedit Arbitrary PHP Code Execution source: https://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include...