Exponent CMS Multiple Input Validation Vulnerabilities

Exponent CMS is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, information-disclosure, arbitrary-file-upload, arbitrary-file-modify, and cross-site-scripting vulnerabilities...

Abtp Portal Project 'ABTPV_BLOQUE_CENT' Parameter Local and Remote File Include Vulnerabilities

Abtp Portal Project is prone to local and remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to compromise the application and the underlying compute...

Pulse CMS Basic Local File Include Vulnerability

Pulse CMS Basic is prone to a local file-include vulnerability. An attacker can exploit this issue to include arbitrary local files and execute PHP code on the affected computer in the context of the webserver process. This may facilitate a compromise of the application and the underlying system;...

Pulse CMS Basic Local File Include Vulnerability

Pulse CMS Basic is prone to a local file-include vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pulsecms:pulsecms...

LittlePhpGallery 'gallery.php' Local File Include Vulnerability

LittlePhpGallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This ma...

LittlePhpGallery <= 1.0.2 LFI Vulnerability

LittlePhpGallery is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Pandora FMS Authentication Bypass And Multiple Input Validation Vulnerabilities

Pandora FMS is prone to an authentication-bypass vulnerability as well as the following input-validation vulnerabilities: 1. A command-injection vulnerability 2. Multiple SQL-injection vulnerabilities 3. A remote file-include vulnerability 4. An arbitrary PHP-code-execution vulnerability 5...

Pandora FMS <= 3.1 Multiple Input Validation Vulnerabilities - Active Check

Pandora FMS is prone to an authentication bypass vulnerability as well as the following input-validation vulnerabilities: - A commandinjection vulnerability - Multiple SQL injection SQLi vulnerabilities - A remote file include RFI vulnerability - An arbitrary PHP code execution vulnerability -...

RSForm! Component for Joomla! 'lang' Parameter SQL Injection and Local File Include Vulnerabilities

The RSForm! Component for Joomla! is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit latent...

RSForm! Component for Joomla! <= 1.0.5 SQLi and LFI Vulnerabilities - Active Check

The RSForm! Component for Joomla! is prone to an SQL injection SQLi vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit...

RSForm! Component for Joomla! 'lang' Parameter Local File Include

The version of the RSForm! component for Joomla! running on the remote host is affected by a local file include vulnerability due to improper sanitization of user-supplied input to the 'lang' parameter before using it in the forme.php script to include PHP code. An unauthenticated, remote attacke...

Joomla Component 'com_img' Local File Include Vulnerability

The 'comimg' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver...

Joomla Component 'com_jimtawl' Local File Include Vulnerability

The 'comjimtawl' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the...

Joomla Component 'com_jimtawl' <= 1.0.2 LFI Vulnerability - Active Check

The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100919";...

DSquare Exploit Pack: D2SEC_VTIGERCRM

Name| d2secvtigercrm ---|--- CVE| CVE-2010-3910 Exploit Pack| D2ExploitPack Description| vtiger CRM 5.2.0 Local File Include Vulnerability Notes|...

PHP include alco-0day

Я слегка трезв, так что не судите строго. Если что Ded mazdai гарант того что в таком состоянии судить меня строго нельзя По мотивам: https://rdot.org/forum/showpost.php?p=9688&postcount=45 Имеем скрипт inc.php: Код: Определение имён папок: 1 Шлём обычный кривой запрос http://localhost/inc.php?a=...

Vtiger CRM <= 5.2.0 Multiple Vulnerabilities - Active Check

Vtiger CRM is prone to an arbitrary file upload vulnerability, multiple local file include LFI vulnerabilities, and multiple cross-site scripting XSS vulnerabilities because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text...

WebRCSdiff 0.9 - &#039;viewver.php&#039; Remote File Inclusion

======================================================== = Author: Fl0riX - Bug Researchers = Application Name : WebRCSdiff 0.9 = Vulnerable Type: Remote File Inclusion = Download: http://sourceforge.net/projects/webrcsdiff/files/webrcsdiff/0.9%20Release/webrcsdiff-0.9.tar.zip/download = Risk :...

AWCM CMS <= 2.2 Multiple RFI Vulnerabilities

AWCM CMS is prone to multiple remote file include RFI vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

AWCM CMS Multiple Remote File Include Vulnerabilities

AWCM CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary script code in the context of the webserver process. This...