Lucene search
K

8856 matches found

OpenVAS
OpenVAS
added 2010/09/16 12:0 a.m.23 views

PHP MicroCMS Local File Include and SQL Injection Vulnerabilities

PHP MicroCMS is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

6.8CVSS6.5AI score0.02367EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2010/09/16 12:0 a.m.43 views

CMScout IBrowser TinyMCE Plugin LFI Vulnerability - Active Check

CMScout is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.1AI score
Exploits0References1
exploitpack
exploitpack
added 2010/09/15 12:0 a.m.8 views

NWS-Classifieds - cmd Local File Inclusion

NWS-Classifieds - cmd Local File Inclusion source: https://www.securityfocus.com/bid/43259/info NWS-Classifieds is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/09/15 12:0 a.m.16 views

CMScout IBrowser TinyMCE Plugin 2.3.4.3 - Local File Inclusion

CMScout IBrowser TinyMCE Plugin 2.3.4.3 - Local File Inclusion source: https://www.securityfocus.com/bid/43260/info CMScout is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversa...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2010/09/10 12:0 a.m.20 views

Pecio CMS 'template' Multiple Remote File Include Vulnerabilities

This host is running Pecio CMS and is prone to multiple remote file inclusion vulnerabilities. OpenVAS Vulnerability Test $Id: gbpeciocmsmultrfivuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Pecio CMS 'template' Multiple Remote File Include Vulnerabilities Authors: Madhuri D Copyright: Copyright c...

7.5CVSS0.7AI score0.02338EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2010/09/10 12:0 a.m.21 views

Fedora Update for libmikmod FEDORA-2010-13702

Check for the Version of libmikmod OpenVAS Vulnerability Test Fedora Update for libmikmod FEDORA-2010-13702 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

9.3CVSS0.4AI score0.06722EPSS
Exploits1References2
exploitpack
exploitpack
added 2010/09/06 12:0 a.m.11 views

HeffnerCMS 1.22 - index.php Local File Inclusion

HeffnerCMS 1.22 - index.php Local File Inclusion source: https://www.securityfocus.com/bid/43006/info HeffnerCMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...

Exploits0
OpenVAS
OpenVAS
added 2010/09/06 12:0 a.m.18 views

SyndeoCMS Local File Include, Cross Site Scripting, and HTML Injection Vulnerabilities

SyndeoCMS is prone to a local file-include, a cross-site scripting, and an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input. Exploiting the local file-include issue allows remote attackers to view or execute local files within the context of the...

7.1AI score
Exploits0References2
Prion
Prion
added 2010/09/03 6:0 p.m.16 views

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Multi-lingual E-Commerce System 0.2 allow remote attackers to execute arbitrary PHP code via a URL in the includepath parameter to 1 checkout2-CYM.php, 2 checkout2-EN.php, 3 checkout2-FR.php, 4 cat-FR.php, 5 cat-EN.php, 6 cat-CYM.php, 7...

7.5CVSS8.2AI score0.02338EPSS
Exploits1References3Affected Software1
Exploit DB
Exploit DB
added 2010/09/02 12:0 a.m.20 views

TBDev 2.0 - Remote File Inclusion / SQL Injection

source: https://www.securityfocus.com/bid/43004/info TBDev is prone to multiple input-validation vulnerabilities, including a remote file-include issue and an SQL-injection issue. A successful exploit may allow an attacker to execute malicious code within the context of the webserver process,...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2010/09/01 12:0 a.m.15 views

ccTiddly 'cct_base' Parameter Multiple Remote File Include Vulnerabilities

ccTiddly is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks are also possible. ccTiddly 1.7.6 is vulnerable; oth...

7.5CVSS0.7AI score0.02575EPSS
Exploits1References2
exploitpack
exploitpack
added 2010/08/26 12:0 a.m.9 views

TCMS - Multiple Input Validation Vulnerabilities

TCMS - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/42766/info TCMS is prone to multiple input-validation vulnerabilities, including a local file-include vulnerability, a local file-disclosure vulnerability, multiple SQL-injection vulnerabilities, and multip...

Exploits0
Exploit DB
Exploit DB
added 2010/08/26 12:0 a.m.17 views

TCMS - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/42766/info TCMS is prone to multiple input-validation vulnerabilities, including a local file-include vulnerability, a local file-disclosure vulnerability, multiple SQL-injection vulnerabilities, and multiple cross-site scripting vulnerabilities. An...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2010/08/18 12:0 a.m.23 views

Dedecms <= V5.6 Final模板执行漏洞

Dedecms V5.6 Final版本中的各个文件存在一系列问题,经过精心构造的含有恶意代表的模板内容可以通过用户后台的上传附件的功能上传上去,然后通过SQL注入修改附加表的模板路径为我们上传的模板路径,模板解析类:include/incarchivesview.php没有对模板路径及名称做任何限制,则可以成功执行恶意代码。 1、member/articleedit.php文件(注入): //漏洞在member文件夹下普遍存在,$dedeaddonfields是由用户提交的,可以被伪造,伪造成功即可带入sql语句,于是我们可以给附加表的内容进行update赋值。 … //分析处理附加表...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2010/08/18 12:0 a.m.23 views

Open-Realty 2.5.7 - Local File Disclosure

" sh.php"; ? include the image and sh.php will be generated. proceed with sh.php MAGICQUOTES must be 'off' and %00 must not be replaced with \0. / print "\n\n\n"; print "LFI discovery and implementation: Nikola Petrov [email protected]\n"; print "Date: 05.09.2009\n"; print "\n\n"; if$argc 5...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/08/13 12:0 a.m.23 views

MailForm 1.2 Remote File Include Vulnerability

Exploit for php platform in category web applications ============================================== MailForm 1.2 Remote File Include Vulnerability ============================================== Exploit Title: MailForm Remote File Include Date: 14-8-2010 Author: LoSt.HaCkEr / aDaMTRoJaN Software...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/08/12 12:0 a.m.40 views

PHP-Nuke-8.1-seo-Arabic Remote File Include Vulnerabilty

Exploit for php platform in category web applications ======================================================== PHP-Nuke-8.1-seo-Arabic Remote File Include Vulnerabilty ======================================================== Exploit Title: PHP-Nuke-8.1-seo-Arabic Remote File Include Date: 12-8-20...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/08/11 12:0 a.m.17 views

clearBudget 0.9.8 - Remote File Inclusion

clearBudget 0.9.8 - Remote File Inclusion Exploit Title: clearBudget v0.9.8 Remote File Include Date: 10/08/2010 Author: Offensive [email protected] Red-Stone On Community ! Software Link: http://www.clearbudget.net Version : v0.9.8 Tested on: Windows XP C0nditi0ns : PHP Version 4.x.x Expl0it...

0.1AI score
Exploits0
OpenVAS
OpenVAS
added 2010/08/11 12:0 a.m.27 views

Clearsite 'header.php' Remote File Include Vulnerability

Clearsite is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible. OpenVAS Vulnerability Test $Id:...

7.5CVSS0.6AI score0.06118EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/08/11 12:0 a.m.16 views

ClearSite RFI Vulnerability (Aug 2010) - Active Check

ClearSite is prone to a remote file include RFI vulnerability because it fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS6.5AI score0.06118EPSS
Exploits0References2
Rows per page
Query Builder