RWCards Component for Joomla! 'mosConfig_absolute_path' Parameter Remote File Include

The version of the RWCards component for Joomla! running on the remote host is affected by a remote file include vulnerability due to improper sanitization of user-supplied input to the 'mosConfigabsolutepath' parameter before using it in the rwcards.advancedate.php script to include PHP code. An...

FirePass SSL VPN - Local File Inclusion

FirePass SSL VPN - Local File Inclusion SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Unauthenticated local file inclusion product: F5 FirePass SSL VPN vulnerable version: = 7.0.0 HF-70-6 fixed version: 7.0.0 HF-70-7...

FirePass SSL VPN - Local File Inclusion

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Unauthenticated local file inclusion product: F5 FirePass SSL VPN vulnerable version: = 7.0.0 HF-70-6 fixed version: 7.0.0 HF-70-7 impact: Critical homepage:...

Joomla Component com_p2dxt Local File Include Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------------- Joomla Component comp2dxt Local File Include / LFI -------------------------------------------------------------------------------- Author = Zikou-16 Facebook =...

Design/Logic Flaw

The setdebugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service host crash by writing to the reserved bits of the DR7 debug control register...

openSIS 5.1 - 'ajax.php' Local File Inclusion

source: https://www.securityfocus.com/bid/56598/info openSIS is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in t...

openSIS 5.1 - ajax.php Local File Inclusion

openSIS 5.1 - ajax.php Local File Inclusion source: https://www.securityfocus.com/bid/56598/info openSIS is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this vulnerability to obtain potentially sensitive...

ATutor 2.1 - tool_file Local File Inclusion

ATutor 2.1 - toolfile Local File Inclusion source: https://www.securityfocus.com/bid/56600/info ATutor is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to view files and execute local scripts i...

ATutor 2.1 - 'tool_file' Local File Inclusion

source: https://www.securityfocus.com/bid/56600/info ATutor is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to view files and execute local scripts in the context of the web server process. Th...

dotProject <= 2.1.6 Local File Include Vulnerability

dotProject is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Mapserver for Windows Local File Include Vulnerability

Mapserver for WindowsMS4W is prone to a local file include vulnerability because it fails to sufficiently sanitize user supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holder...

TP-LINK TL-WR841N Router LFI Vulnerability (Oct 2012) - Active Check

TP-LINK TL-WR841N router is prone to a local file include LFI vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Bitweaver Multiple Cross Site Scripting and Local File Include Vulnerabilities

Bitweaver is prone to multiple cross-site scripting vulnerabilities and a local file include vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Omnistar Document Manager v8.0 - Multiple Vulnerabilities

Title: ====== Omnistar Document Manager v8.0 - Multiple Vulnerabilities Date: ===== 2012-10-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=712 VL-ID: ===== 712 Common Vulnerability Scoring System: ==================================== 8.3 Introduction: =============...

CMSQLITE 1.3.2 LFI / XSS / Cross Site Request Forgery

Title: ====== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Date: ===== 2012-10-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=726 VL-ID: ===== 726 Common Vulnerability Scoring System: ==================================== 4.3 Introduction: ============= CMSQLite is...

CMSQLite 1.3.2 - Multiple Vulnerabilities

CMSQLite 1.3.2 - Multiple Vulnerabilities Title: ====== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Date: ===== 2012-10-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=726 VL-ID: ===== 726 Common Vulnerability Scoring System: ==================================== 4...

CMSQLite 1.3.2 - Multiple Vulnerabilities

Title: ====== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies Date: ===== 2012-10-18 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=726 VL-ID: ===== 726 Common Vulnerability Scoring System: ==================================== 4.3 Introduction: ============= CMSQLite is...

CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies

Document Title: =============== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=726 Release Date: ============= 2012-10-18 Vulnerability Laboratory ID VL-ID: ==================================== 726 Common...

CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies

Document Title: =============== CMSQLITE v1.3.2 - Multiple Web Vulnerabiltiies References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=726 Release Date: ============= 2012-10-18 Vulnerability Laboratory ID VL-ID: ==================================== 726 Common...

Omnistar Document Manager 8.0 - Multiple Vulnerabilities

Omnistar Document Manager 8.0 - Multiple Vulnerabilities Title: ====== Omnistar Document Manager v8.0 - Multiple Vulnerabilities Date: ===== 2012-10-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=712 VL-ID: ===== 712 Common Vulnerability Scoring System:...