PHP Blue Dragon CMS 2.9.1 - Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18609/info PHP Blue Dragon CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to have an...

AllMyGuests 0.x - info.inc.php Arbitrary Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP application AllMyGuests is prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed variables that are used in a 'requireonce' call. This iss...

D-Forum 1 footer Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/6879/info D-Forum is prone to an issue which may allow remote attackers to include files located on remote servers. This issue is present in the /includes/header.php3 and /includes/footer.php3 scripts. Under some...

PHPBB 2.0.x album_portal.php Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10177/info It has been reported that phpBB may be prone to a file include vulnerability that may allow remote attackers to include a remote malicious script to be executed on a vulnerable system...

CASTOR <= 1.1.1 (lib/rs.php) Remote File Include Exploit

No description provided by source. !/usr/bin/perl CASTOR = 1.1.1 Remote Command Execution Vulnerability Risk : High Remote Code Execution Url: svn.gna.org/svn/castor/trunk Exploit: http://www.site.com/path/lib/rs.php?rootpath=EvilScript coded and f0und3d by Kw3RLn ciriboflacsATYaHOo.com Romanian...

Invision Board 1.1.1 ipchat.php Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6976/info Invision Board is prone to an issue that may allow remote attackers to include files located on attacker-controlled servers. This vulnerability is as a result of insufficient sanitization performed on remote use...

Imagam iFiles 1.16.0 iOS - Multiple Web Vulnerabilities

No description provided by source. Document Title: =============== Imagam iFiles v1.16.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1160 Release Date: ============= 2013-12-03 Vulnerability Laboratory ID VL-ID:...

E-Guest 1.1 Server Side Include Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5129/info E-Guest guest book is a freely available, open source guest book. It is designed for Unix and Linux operating systems. E-Guest does not adequately sanitize user-supplied input in guest book entries. Because of...

YABB SE 0.8/1.4/1.5 Packages.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6663/info YaBB SE allows remote users to influence the location of included files. A remote attacker may exploit this condition to cause an external, attacker-supplied file to be included and executed by YABB SE. This may...

Forum 5 PM.PHP Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18967/info Forum 5 is prone to a local file-include vulnerability. The application fails to sanitize user input when executing the script. In particular the script fails to check for the presence of a directory-traversal...

Bilder Galerie 1.0 Index.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25256/info Bilder Galerie is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the...

p.mapper 3.2 beta3 incphp/globals.php _SESSION[PM_INCPHP] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/26614/info p.mapper is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and th...

Shoutbox 1.0 Shoutbox.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25254/info Shoutbox is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlyin...

Freeway 1.4.1.171 english/account.php language Parameter Traversal Local File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/30731/info Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal strings to view...

Jason Hines PHPWebLog 0.4/0.5 - Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12747/info phpWebLog is prone to remote file include vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'includeonce' function call. An...

AT Contenator <= 1.0 - (Root_To_Script) Remote File Include Exploit

html head meta http-equiv=Content-Type content=text/html; charset=windows-1254 titleAT Contenator = v1.0 RootToScript Remote File Include Exploit/title script language=JavaScript //'=============================================================================================== //'Script Name: AT...

DCP-Portal 6.0 admin/inc/footer.inc.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/20024/info DCP-Portal is prone to multiple input-validation vulnerabilities, including multiple cross-site scripting, SQL-injection, and remote file-include issues, because the application fails to sanitize user-supplied...

HolaCMS 1.2.x HTMLtags.PHP Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8416/info A file include vulnerability has been reported in the htmltags.php module of HolaCMS. This problem may allow an attacker to access potentially sensitive information reserved for adminstration. It has also been...

AutoLinks 2.1 Pro Al_initialize.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14686/info AutoLinks Pro is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...

Blog:CMS 4.1 Dir_Plugins Parameter Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/19577/info Blog:CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing...