Falcon Series One 1.4.3 stable - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/26798/info Falcon Series One is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include a remote file-include vulnerability and multiple HTML-injection vulnerabilities. Exploiting...

Immunity Canvas: NUBOARD_INCLUDE

Name| nuboardinclude ---|--- CVE| CVE-2007-5841 Exploit Pack| CANVAS Description| nuBoard remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: nuboard CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5841 CVE Name: CVE-2007-5841...

Immunity Canvas: VPORTAL_INCLUDE

Name| vportalinclude ---|--- CVE| CVE-2007-5842 Exploit Pack| CANVAS Description| Vortex Portal remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: igamingcms.com CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5842 CVE Name: CVE-2007-5842...

Immunity Canvas: SCWIKI_INCLUDE

Name| scwikiinclude ---|--- CVE| CVE-2007-5843 Exploit Pack| CANVAS Description| scWiki remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: scWiki CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5843 CVE Name: CVE-2007-5843...

Galmeta Post 0.2 - Upload_Config.php Remote File Inclusion

Galmeta Post 0.2 - UploadConfig.php Remote File Inclusion source: https://www.securityfocus.com/bid/26329/info Galmeta Post is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the...

syndeocms-rfi.txt

-------------------------------------------- = = = Mdx c 2007 = = http://www.by-mdx.com = -------------------------------------------- = = =syndeoCMS 2.5.01 cmsdir Remote File Include = = ============================================ = = Download: = = http://sourceforge.net/projects/syndeocms =...

syndeoCMS 2.5.01 (cmsdir) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ============================================================= syndeoCMS 2.5.01 cmsdir Remote File Inclusion Vulnerability ============================================================= -------------------------------------------- = =...

PHP Helpdesk 0.6.16 - index.php Local File Inclusion

PHP Helpdesk 0.6.16 - index.php Local File Inclusion source: www.securityfocus.com/bid/26318/info PHP Helpdesk is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute...

dmguest-lfi.txt

DM Guestbook = 0.4.1 Multiple Local File Include Vulnerabilities http://sourceforge.net/project/showfiles.php?groupid=101364 /guestbook.0.4.1/ POC : /guestbook.php?lng=../../../../../../../etc/passwd%00 /admin/admin.guestbook.php?lng=../../../../../../../etc/passwd%00...

Immunity Canvas: SIGE_INCLUDE

Name| sigeinclude ---|--- CVE| CVE-2007-5781 Exploit Pack| CANVAS Description| SIGE remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: pfadmin CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5781 CVE Name: CVE-2007-5781...

teatro 1.6 (basePath) Remote File Include Vulnerability

No description provided by source. teatro 1.6 Remote File Include Vulnerability Download script : http://telemat.die.unifi.it/book/2003/Telematica-II/teatro-1.6.tgz Dicovered by : Alkomandoz Hacker Contact : [email protected]...

teatro 1.6 ( basePath ) Remote File Include Vulnerability

======================================================================== teatro 1.6 Remote File Include Vulnerability Download script : http://telemat.die.unifi.it/book/2003/Telematica-II/teatro-1.6.tgz Dicovered by : Alkomandoz Hacker Contact : [email protected]...

MySpace Resource Script (MSRS) 1.21 RFI Vulnerability

Exploit for unknown platform in category web applications ===================================================== MySpace Resource Script MSRS 1.21 RFI Vulnerability ===================================================== MSRS v.1.21 Remote File Inclusion Author Site : http://www.myspacepros.com/ POC...

teatro 1.6 (basePath) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ======================================================= teatro 1.6 basePath Remote File Include Vulnerability ======================================================= teatro 1.6 Remote File Include Vulnerability Download script :...

GoSamba 1.0.1 (include_path) Multiple RFI Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= GoSamba 1.0.1 includepath Multiple RFI Vulnerabilities ========================================================= GoSamba 1.0.1 includepath Multiple Remote File Inclusion...

Directory traversal

Multiple directory traversal vulnerabilities in PHP Project Management 0.8.10 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the deflang parameter to modules/files/list.php; the mpath parameter to 2 modules/projects/summary.inc.php or 3...

Immunity Canvas: PEOPLEAGGREGATOR_INCLUDE

Name| peopleaggregatorinclude ---|--- CVE| CVE-2007-5631 Exploit Pack| CANVAS Description| peopleaggregator 1.2pre6 remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: peopleaggregator.org CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5631 CVE Name:...

Immunity Canvas: TOWEL_INCLUDE

Name| towelinclude ---|--- CVE| CVE-2007-5628 Exploit Pack| CANVAS Description| ToweLS remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: ToweLS CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5628 CVE Name: CVE-2007-5628...

reloadcms-lfi.txt

New Advisory: ReloadCMS http://reloadcms.com ——————–Summary—————- Software: ReloadCMS Sowtware’s Web Site: http://reloadcms.com/main/ Versions: 1.2.7 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote Status: Unpatched PoC/Exploit: Available Solution: Not Available Discovered b...

weather-lfi.txt

Weather for PHP Dr.2 = 4ever .... =D...