Lucene search
K

8856 matches found

Exploit DB
Exploit DB
added 2010/12/26 12:0 a.m.28 views

CruxCMS 3.0 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/45594/info CruxCMS is prone to multiple input-validation vulnerabilities, including multiple security-bypass issues, multiple arbitrary-file-upload issues, multiple SQL-injection issues, a local file-include issue, a cross-site-scripting issue and multipl...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/12/16 12:0 a.m.24 views

Google Urchin 5.7.03 LFI Vulnerability 0day

Exploit for cgi platform in category web applications Summary: Google Urchin is vulnerable to a Local File Include LFI vulnerability that allows arbitrary reading of files. Confirmed in version 5.7.03 running on Linux. Issue may exist in other versions as well. Analysis: During normal usage, Goog...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2010/12/14 12:0 a.m.19 views

Joomla Redirect Component 'com_redirect' LFI Vulnerability - Active Check

The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100946";...

5.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/10 12:0 a.m.11 views

net2ftp 'admin1.template.php' Local and Remote File Include Vulnerabilities

The 'net2ftp' program is prone to a local file-include vulnerability and a remote file-include vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to obtain sensitive information; other attacks are also possible. net2ftp...

0.1AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/10 12:0 a.m.14 views

net2ftp 'admin1.template.php' Local and Remote File Include Vulnerabilities

The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:net2ftp:net2ftp"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100943";...

7.3AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/09 12:0 a.m.12 views

Abtp Portal Project 'ABTPV_BLOQUE_CENT' Parameter Local and Remote File Include Vulnerabilities

Abtp Portal Project is prone to local and remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to compromise the application and the underlying compute...

0.1AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/09 12:0 a.m.7 views

Exponent CMS Multiple Input Validation Vulnerabilities

Exponent CMS is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, information-disclosure, arbitrary-file-upload, arbitrary-file-modify, and cross-site-scripting vulnerabilities...

7.5AI score
Exploits0References6
OpenVAS
OpenVAS
added 2010/12/09 12:0 a.m.19 views

Abtp Portal Project <= 0.1.0 Local and Remote File Include Vulnerabilities

Abtp Portal Project is prone to local and remote file include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2010/12/06 12:0 a.m.27 views

Pulse CMS Basic Local File Include Vulnerability

Pulse CMS Basic is prone to a local file-include vulnerability. An attacker can exploit this issue to include arbitrary local files and execute PHP code on the affected computer in the context of the webserver process. This may facilitate a compromise of the application and the underlying system;...

6.8CVSS0.3AI score0.0263EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2010/12/06 12:0 a.m.22 views

Pulse CMS Basic Local File Include Vulnerability

Pulse CMS Basic is prone to a local file-include vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pulsecms:pulsecms...

6.8CVSS6.1AI score0.0263EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2010/12/02 12:0 a.m.18 views

LittlePhpGallery 'gallery.php' Local File Include Vulnerability

LittlePhpGallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This ma...

6.8CVSS0.5AI score0.01952EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2010/12/02 12:0 a.m.18 views

LittlePhpGallery <= 1.0.2 LFI Vulnerability

LittlePhpGallery is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.8CVSS6.4AI score0.01952EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2010/12/01 12:0 a.m.42 views

Pandora FMS Authentication Bypass And Multiple Input Validation Vulnerabilities

Pandora FMS is prone to an authentication-bypass vulnerability as well as the following input-validation vulnerabilities: 1. A command-injection vulnerability 2. Multiple SQL-injection vulnerabilities 3. A remote file-include vulnerability 4. An arbitrary PHP-code-execution vulnerability 5...

10CVSS0.6AI score0.65618EPSS
Exploits26References3
OpenVAS
OpenVAS
added 2010/12/01 12:0 a.m.39 views

Pandora FMS <= 3.1 Multiple Input Validation Vulnerabilities - Active Check

Pandora FMS is prone to an authentication bypass vulnerability as well as the following input-validation vulnerabilities: - A commandinjection vulnerability - Multiple SQL injection SQLi vulnerabilities - A remote file include RFI vulnerability - An arbitrary PHP code execution vulnerability -...

10CVSS8.2AI score0.65618EPSS
Exploits26References3
OpenVAS
OpenVAS
added 2010/11/30 12:0 a.m.12 views

RSForm! Component for Joomla! 'lang' Parameter SQL Injection and Local File Include Vulnerabilities

The RSForm! Component for Joomla! is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit latent...

Exploits0References3
OpenVAS
OpenVAS
added 2010/11/30 12:0 a.m.43 views

RSForm! Component for Joomla! <= 1.0.5 SQLi and LFI Vulnerabilities - Active Check

The RSForm! Component for Joomla! is prone to an SQL injection SQLi vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit...

5.8AI score
Exploits0References3
OpenVAS
OpenVAS
added 2010/11/29 12:0 a.m.22 views

Joomla Component 'com_jimtawl' Local File Include Vulnerability

The 'comjimtawl' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the...

7.5CVSS0.4AI score0.07593EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2010/11/29 12:0 a.m.11 views

Joomla Component 'com_img' Local File Include Vulnerability

The 'comimg' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver...

0.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/11/29 12:0 a.m.30 views

RSForm! Component for Joomla! 'lang' Parameter Local File Include

The version of the RSForm! component for Joomla! running on the remote host is affected by a local file include vulnerability due to improper sanitization of user-supplied input to the 'lang' parameter before using it in the forme.php script to include PHP code. An unauthenticated, remote attacke...

6.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2010/11/29 12:0 a.m.26 views

Joomla Component 'com_jimtawl' <= 1.0.2 LFI Vulnerability - Active Check

The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100919";...

7.5CVSS5.1AI score0.07593EPSS
Exploits2References2
Rows per page
Query Builder