8856 matches found
CruxCMS 3.0 - Multiple Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/45594/info CruxCMS is prone to multiple input-validation vulnerabilities, including multiple security-bypass issues, multiple arbitrary-file-upload issues, multiple SQL-injection issues, a local file-include issue, a cross-site-scripting issue and multipl...
Google Urchin 5.7.03 LFI Vulnerability 0day
Exploit for cgi platform in category web applications Summary: Google Urchin is vulnerable to a Local File Include LFI vulnerability that allows arbitrary reading of files. Confirmed in version 5.7.03 running on Linux. Issue may exist in other versions as well. Analysis: During normal usage, Goog...
Joomla Redirect Component 'com_redirect' LFI Vulnerability - Active Check
The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100946";...
net2ftp 'admin1.template.php' Local and Remote File Include Vulnerabilities
The 'net2ftp' program is prone to a local file-include vulnerability and a remote file-include vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to obtain sensitive information; other attacks are also possible. net2ftp...
net2ftp 'admin1.template.php' Local and Remote File Include Vulnerabilities
The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:net2ftp:net2ftp"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100943";...
Abtp Portal Project 'ABTPV_BLOQUE_CENT' Parameter Local and Remote File Include Vulnerabilities
Abtp Portal Project is prone to local and remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to compromise the application and the underlying compute...
Exponent CMS Multiple Input Validation Vulnerabilities
Exponent CMS is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, information-disclosure, arbitrary-file-upload, arbitrary-file-modify, and cross-site-scripting vulnerabilities...
Abtp Portal Project <= 0.1.0 Local and Remote File Include Vulnerabilities
Abtp Portal Project is prone to local and remote file include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Pulse CMS Basic Local File Include Vulnerability
Pulse CMS Basic is prone to a local file-include vulnerability. An attacker can exploit this issue to include arbitrary local files and execute PHP code on the affected computer in the context of the webserver process. This may facilitate a compromise of the application and the underlying system;...
Pulse CMS Basic Local File Include Vulnerability
Pulse CMS Basic is prone to a local file-include vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pulsecms:pulsecms...
LittlePhpGallery 'gallery.php' Local File Include Vulnerability
LittlePhpGallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This ma...
LittlePhpGallery <= 1.0.2 LFI Vulnerability
LittlePhpGallery is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Pandora FMS Authentication Bypass And Multiple Input Validation Vulnerabilities
Pandora FMS is prone to an authentication-bypass vulnerability as well as the following input-validation vulnerabilities: 1. A command-injection vulnerability 2. Multiple SQL-injection vulnerabilities 3. A remote file-include vulnerability 4. An arbitrary PHP-code-execution vulnerability 5...
Pandora FMS <= 3.1 Multiple Input Validation Vulnerabilities - Active Check
Pandora FMS is prone to an authentication bypass vulnerability as well as the following input-validation vulnerabilities: - A commandinjection vulnerability - Multiple SQL injection SQLi vulnerabilities - A remote file include RFI vulnerability - An arbitrary PHP code execution vulnerability -...
RSForm! Component for Joomla! 'lang' Parameter SQL Injection and Local File Include Vulnerabilities
The RSForm! Component for Joomla! is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit latent...
RSForm! Component for Joomla! <= 1.0.5 SQLi and LFI Vulnerabilities - Active Check
The RSForm! Component for Joomla! is prone to an SQL injection SQLi vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit...
Joomla Component 'com_jimtawl' Local File Include Vulnerability
The 'comjimtawl' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the...
Joomla Component 'com_img' Local File Include Vulnerability
The 'comimg' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver...
RSForm! Component for Joomla! 'lang' Parameter Local File Include
The version of the RSForm! component for Joomla! running on the remote host is affected by a local file include vulnerability due to improper sanitization of user-supplied input to the 'lang' parameter before using it in the forme.php script to include PHP code. An unauthenticated, remote attacke...
Joomla Component 'com_jimtawl' <= 1.0.2 LFI Vulnerability - Active Check
The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100919";...