microsoft index server 2.0/indexing services for windows 2000 - Directory Traversal

No description provided by source. source: http://www.securityfocus.com/bid/950/info Index Server 2.0 is a utility included in the NT 4.0 Option Pack. The functionality provided by Index Service has been built into Windows 2000 as Indexing Services. When combined with IIS, Index Server and Indexi...

Lib CGI 0.1 Include Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6264/info Lib CGI is a freely available, open source CGI library for C programmers. It is available for Unix and Linux operating systems. It has been reported that a buffer overflow exists in the Lib CGI development...

CVE-2009-5067

Directory traversal vulnerability in html2ps before 1.0b6 allows remote attackers to read arbitrary files via a .. dot dot in the "include file" SSI directive. NOTE: this issue only might be a vulnerability in limited scenarios, such as if html2ps is invoked by a web application, or if a...

PT-2012-1276 · Html2Ps · Html2Ps

Name of the Vulnerable Software and Affected Versions: html2ps versions prior to 1.0b6 Description: The issue allows remote attackers to read arbitrary files via a .. dot dot in the include file SSI directive. This might be a problem in limited scenarios, such as if html2ps is invoked by a web...

EasyTalk microblogging system X1. X file contains the vulnerability and the Fix-vulnerability warning-the black bar safety net

EasyTalk microblogging system X1. X file contains the vulnerability PluginsAction.class.php parameters in the file $GET'out' without any filter, directly take to call the include file, the resulting vulnerabilities generated. PluginsAction.class.php to:...

openSUSE Security Update : horde (horde-657)

Version update to horde 3.1.9 fixes a cross-site-scripting XSS issue CVE-2008-5917 and an include file problem CVE-2009-0932. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update horde-657. The tex...

openSUSE 10 Security Update : horde (horde-6099)

Version update to horde 3.1.9 fixes a cross-site-scripting XSS issue CVE-2008-5917 and an include file problem CVE-2009-0932. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update horde-6099. The te...

Novaboard 1.0.0 - Multiple Vulnerabilities

Novaboard 1.0.0 - Multiple Vulnerabilities =============================================================================================== Found : brainpillow Dork : "Powered by NovaBoard v1.0.0" Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Mail : [email protected]...

Improper access control

Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an include file containing account credentials via a direct request for config.inc...

PHPMyInventory 2.8 - global.inc.php Remote File Inclusion

PHPMyInventory 2.8 - global.inc.php Remote File Inclusion phpMyInventory pmi v. 2.8 FOUND BY : o0xxdark0o o0xxdark0oatmsn.com DOWNLOAD : http://sourceforge.net/projects/phpmyinventory/ REMOTE FILE ICLUDE FILE : PATH\Includes\global.inc.php EXPLOIT:...

lwphpbb2-rfi.txt

------=Part5959220650484.1177339131270 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline AuThor:Silitoad emA!l:SilitoadathotmaildotCom HoMePaGe: http://www.Arabian-FighterZ.com Info LWphpBB2 Version: 0.4c Problem: Full path...

modx-rfi.txt

AuThor:Silitoad emA!l:SilitoadathotmaildotCom HoMePaGe:http://www.silitoad.org Powered By Silitoad From Arabian-Fighterz Info Website: http://modxcms.com/ Version: 0.9.5 Download: http://modxcms.com/assets/snippets/filedownload/download.php?path=YnVpbGRz&fileName=modx-0.9.5.zip Problem: Full path...

cm4p-rfi.txt

AuThor:Silitoad emA!l:SilitoadathotmaildotCom HoMePaGe: http://www.Arabian-FighterZ.com Info website: http://www.mariovaldez.net cms: cm4p Version: 0.6.1 Download: http://www.mariovaldez.net/software/cm4p/files/cm4p0.6.1.zip Problem: Include file bug: includeonce $pathpre . "cm/cmanon.inc.php";...

metabb-rfi.txt

AuThor:Silitoad emA!l:SilitoadathotmaildotCom HoMePaGe: http://www.Arabian-FighterZ.com Info cms: metabb Version: 6 Download:http://www.hotscripts.com/jump.php?listingid=61127&jumptype=1 Problem: Include file bug: includeonce$phprootpath . 'rabbitoshi/includes/functionsrabbitoshicron. Vuls 1.Full...

Netmao Movie network cat movie system vulnerabilities-vulnerability warning-the black bar safety net

IceskYsl in NOHACK published on the php vulnerabilities topic. The first is the include file vulnerability. So today I quickly found one, not exclusive to! Huh. Program: Netmao Movie network cat movie system. Description: now its latest version is 3. 0, due to the encryption, so it is not good to...

phpMyNewsletter 0.6.10 (customize.php l) RFI Vulnerability

No description provided by source. Product : phpMyNewsletter Tested version : 0.6.10 Website : http://gregory.kokanosky.free.fr/phpmynewsletter/ Problem : include file PHP code : °°°°°°°°°° ---- /include/customize.php ---- ? $langfile = $l; include $l; ? ---- /include/customize.php ----...

phpMyNewsletter 0.6.10 (customize.php l) RFI Vulnerability

Exploit for unknown platform in category web applications ========================================================== phpMyNewsletter 0.6.10 customize.php l RFI Vulnerability ========================================================== Product : phpMyNewsletter Tested version : 0.6.10 Website :...

PT-2007-3012 · Clbox · Clbox

Name of the Vulnerable Software and Affected Versions: CLBOX version 1.01 Description: A remote file inclusion issue in the signup.php file allows remote attackers to execute arbitrary PHP code via a URL in the header parameter. However, it's noted that this issue has been disputed by a reliable...

copperminepg-rfi.txt

By Hasadya Raed Contact : [email protected] ------------------------------------ Script : Coppermine Photo Gallery Expl : Remote Include File Dork : "Copyright c 2003-2006 Coppermine Dev Team" ------------------------------------ B.Files : imageprocessor.php functions.php picmgmt.inc.php...

script-rfi.txt

By Hasadya Raed Contact : [email protected] ------------------------------------ Script : copyright c James Coyle; JCcorp Expl : Remote Include File Dork : "copyright © James Coyle; JCcorp" ------------------------------------ B.File : createurl.php ------------------------------------ Exploit :...