Cyberoam Central Console v2.2 - File Include Vulnerability

Document Title: =============== Cyberoam Central Console v2.2 - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=405 http://www.vulnerability-lab.com/getcontent.php?id=411 Release Date: ============= 2012-02-07 Vulnerability...

Vespa 0.8.6 - getid3.php Local File Inclusion

Vespa 0.8.6 - getid3.php Local File Inclusion source: https://www.securityfocus.com/bid/51878/info Vespa is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view files and execute local scripts in...

Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities

Document Title: =============== Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=428 Release Date: ============= 2012-02-06 Vulnerability Laboratory ID VL-ID: ==================================== 42...

Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities

Document Title: =============== Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=428 Release Date: ============= 2012-02-06 Vulnerability Laboratory ID VL-ID: ==================================== 42...

OpenEMR Local File Include and Command Injection Vulnerabilities

OpenEMR is prone to local file-include and command-injection vulnerabilities because it fails to properly sanitize user- supplied input. A remote attacker can exploit these issues to execute arbitrary shell commands with the privileges of the user running the application, obtain potentially...

OpenEMR 4.1.0 LFI and Command Injection Vulnerabilities - Active Check

OpenEMR is prone to local file include LFI and command injection vulnerabilities because it fails to properly sanitize user supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

OpenEMR 4.1 - Interfacepatient_fileencountertrend_form.php?formname Traversal Local File Inclusion

OpenEMR 4.1 - Interfacepatientfileencountertrendform.php?formname Traversal Local File Inclusion source: https://www.securityfocus.com/bid/51788/info OpenEMR is prone to local file-include and command-injection vulnerabilities because it fails to properly sanitize user-supplied input. A remote...

DSquare Exploit Pack: D2SEC_WPTHEMETUNER

Name| d2secwpthemetuner ---|--- CVE| CVE-2012-0934 Exploit Pack| D2ExploitPack Description| Wordpress Theme Tuner 0.7 Local File Include Vulnerability Notes|...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Support Incident Tracker aka SiT! 3.65 allow remote attackers to inject arbitrary web script or HTML via 1 the file name to incidentattachments.php; 2 unspecified vectors in linkadd.php, possibly involving origref, linkref, linktype parameters,...

CVE-2011-5070

Multiple cross-site scripting XSS vulnerabilities in Support Incident Tracker aka SiT! 3.65 allow remote attackers to inject arbitrary web script or HTML via 1 the file name to incidentattachments.php; 2 unspecified vectors in linkadd.php, possibly involving origref, linkref, linktype parameters,...

Joomla! Component com_visa - Local File Inclusion / SQL Injection

source: https://www.securityfocus.com/bid/51726/info The 'comvisa' component for Joomla! is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerabilit...

Joomla! 'com_kp' Component 'controller' Parameter Local File Include Vulnerability

The 'comkp' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver...

Joomla! 'com_kp' Component LFI Vulnerability (Jan 2012) - Active Check

The SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if description scriptoid"1.3.6.1.4.1.25623.1.0.103398";...

Joomla! Component com_kp - Controller Local File Inclusion

Joomla! Component comkp - Controller Local File Inclusion source: https://www.securityfocus.com/bid/51623/info The 'comkp' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to...

Joomla! Component com_kp - 'Controller' Local File Inclusion

source: https://www.securityfocus.com/bid/51623/info The 'comkp' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute...

w-CMS HTML Injection and Local File Include Vulnerabilities

w-CMS is prone to multiple HTML-injection vulnerabilities and a local file-include vulnerability. Exploiting these issues could allow an attacker to execute arbitrary HTML and script code in the context of the affected browser, steal cookie-based authentication credentials, and execute arbitrary...

w-CMS <= 2.0.1 Multiple Vulnerabilities - Active Check

w-CMS is prone to multiple HTML-injection vulnerabilities and a local file include LFI vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

SAPID CMS Multiple Remote File Include Vulnerabilities

SAPID CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary script code in the context of the webserver process. This...

SAPID CMS <= 1.2.3 Multiple RFI Vulnerabilities - Active Check

SAPID CMS is prone to multiple remote file include RFI vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

eFront Enterprise v3.6.10 - File Include Vulnerability

Document Title: =============== eFront Enterprise v3.6.10 - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=296 Release Date: ============= 2012-01-06 Vulnerability Laboratory ID VL-ID: ==================================== 296...