8799 matches found
WHM-autopilot.txt
GulfTech Security Research December 28th, 2004 Vendor : Benchmark Designs, LLC URL : http://www.whmautopilot.com/ Version : WHM AutoPilot v2.4.6.5 && Others All Versions Risk : Multiple Vulnerabilities Description: Started by a webhost looking for more out of a simple managment script, Brandee...
CVE-2004-2341
PHP file include injection vulnerability in isearch.inc.php for iSearch allows remote attackers to execute arbitrary code via the isearchpath parameter...
DEBIAN-CVE-2004-2541
Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long include line that is later browsed by the target...
e107.pl.txt
| | | | | | |/ \ \ /\ / / | | | | \ V V / || ||/ // Security Group. -= e107 remote sploit =- by sysbug Attack method: with this sploit u can send an include vuln to a Host victim the upload go to /images/evil.php C:\Perl\binperl sploit.pl www.site.com -= e107 remote sploit =- by sysbug...
php-Calendar File Include Vulnerability [ Command Exec ]
GulfTech Security Research December 28th, 2004 Vendor : Sean Proctor URL : http://php-calendar.sourceforge.net/ Version : All Versions Risk : File Include Vulnerability Description: I was searching for a decent calendar which my group at school could use to keep track of events, etc. We were...
Multiple WHM Autopilot Vulnerabilities
GulfTech Security Research December 28th, 2004 Vendor : Benchmark Designs, LLC URL : http://www.whmautopilot.com/ Version : WHM AutoPilot v2.4.6.5 && Others All Versions Risk : Multiple Vulnerabilities Description: Started by a webhost looking for more out of a simple managment script, Brandee...
e107 include() Remote Exploit
No description provided by source. | | | | | | |/ \ \ /\ / / | | | | \ V V / || ||/ // Security Group. -= e107 remote sploit =- by sysbug Attack method: with this sploit u can send an include vuln to a Host victim the upload go to /images/evil.php C:\Perl\binperl sploit.pl www.site.com -= e107...
Apache Httpd < 1.3.33 : mod_include overflow
A buffer overflow in modinclude could allow a local user who is authorised to create server side include SSI files to gain the privileges of a httpd child...
PT-2004-1967 · Apache · Apache +1
Name of the Vulnerable Software and Affected Versions: Apache versions 1.3.x through 1.3.32 Description: The issue is related to a buffer overflow in the get tag function in mod include, which allows local users who can create SSI documents to execute arbitrary code as the apache user. This can b...
CoolPHP 1.0 - Multiple Remote Input Validation Vulnerabilities
CoolPHP 1.0 - Multiple Remote Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/11437/info Reportedly CoolPHP is affected by multiple remote input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied input pri...
CoolPHP 1.0 - Multiple Remote Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/11437/info Reportedly CoolPHP is affected by multiple remote input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied input prior to using it to make critical actions. An attacker can levera...
PHPLinks 2.1.x - Multiple Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/11329/info PHPLinks is reported prone to multiple input validation vulnerabilities. A file include vulnerability is reported to affect the 'index.php' script. This may allow an attacker to include and execute arbitrary PHP scripts. Code execution will occ...
@lex Guestbook (PHP) Include file
Informations : °°°°°°°°°°°°°° Website : http://www.alexphpteam.com Version : all Problem : Include file PHP Code/Location : °°°°°°°°°°°°°°°°°°° ./include/livreinclude.php ------------------------------------------------------------------ if !$noconnect.... some include functions...
Artmedic Webdesign Kleinanzeigen Script - Remote File Inclusion
/ source: https://www.securityfocus.com/bid/10746/info Kleinanzeigen is prone to a file include vulnerability. This issue could allow a remote attacker to include malicious files containing arbitrary code to be executed on a vulnerable computer. If successful, the malicious script supplied by the...
PHP Include Exploit in Mail Manage EX v3.1.8 and maybe others.
Description: PHP Include Exploit in Mail Manage EX v3.1.8 Compromise: a malicious PHP script from an external host may be included and executed. Vulnerable Systems: all system using mmex.php v3.1.8 and maybe lower not tested. Details: The PHP Include exploit exist in de folowing code,...
PHP 4/5 - Input/Output Wrapper Remote File Inclusion Function Command Execution
source: https://www.securityfocus.com/bid/10427/info PHP is reportedly affected by an arbitrary command-execution weakness through the PHP 'include' function. This issue is due to a design error that allows the execution of attacker-supplied POST PHP commands when URI data is used as an argument ...
PT-2004-1439 · Allmyvisitors +3 · Allmyvisitors +3
Name of the Vulnerable Software and Affected Versions: AllMyVisitors affected versions not specified AllMyLinks affected versions not specified AllMyGuests affected versions not specified Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the AMVconfigcfg...
AllMyGuests 0.x - info.inc.php Arbitrary Code Execution
AllMyGuests 0.x - info.inc.php Arbitrary Code Execution source: https://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP application AllMyGuests is prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed variables that are used in a...
AllMyLinks 0.x - 'footer.inc.php' Arbitrary Code Execution
source: https://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP applications AllMyGuests, AllMyLinks and AllMyVisitors are prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed variables that are used in a 'requireonce' call. This issue...
AllMyVisitors 0.x - info.inc.php Arbitrary Code Execution
AllMyVisitors 0.x - info.inc.php Arbitrary Code Execution source: https://www.securityfocus.com/bid/9664/info Reportedly the AllMyPHP applications AllMyGuests, AllMyLinks and AllMyVisitors are prone to a remote file include vulnerability. The issue is due to insufficient filtering of URI passed...