8850 matches found
openengine-rfi.txt
Author : By CrackersChild Contact: [email protected] Greetz : str0ke & All My Friends Script : openEngine 2. 0 beta2 Remote File include Vulnerable Download :http://downloads.sourceforge.net/openengine/openengine20beta2.zip?modtime=1203083918&bigmirror=0 Exploit :...
Barcode Generator 2.0 - 'LSTable.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/31419/info Barcode Generator is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in...
Libra File Manager 1.182.0 - fileadmin.php Local File Inclusion
Libra File Manager 1.182.0 - fileadmin.php Local File Inclusion source: https://www.securityfocus.com/bid/31403/info Libra File Manager is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using...
Libra File Manager 1.18/2.0 - 'fileadmin.php' Local File Inclusion
source: https://www.securityfocus.com/bid/31403/info Libra File Manager is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to view local files within the context of...
cpanel-lfi.txt
Fantastico In all Version Cpanel 11.x First Create directory Let the name /includes/ and upload Shell.php in /includes/ Then rename it to enclicensingservers.php :::xploit:::: http://xxx.com:2082/frontend/x/fantastico/includes/xml.php?fantasticopath=/home/user Discoverd By : joker1 for info :...
Cpanel <= 11.x (Fantastico) LFI Vulnerability (sec bypass)
Exploit for unknown platform in category web applications ========================================================== Cpanel First Create directory Let the name /includes/ and upload Shell.php in /includes/ Then rename it to enclicensingservers.php :::xploit::::...
pluck < 4.5.3 Multiple Local File Include Vulnerabilities
The remote host is running pluck, a simple content management system written in PHP. The version of pluck installed on the remote host fails to sanitize user-supplied input to several parameters before using it in 'data/inc/themes/predefinedvariables.php' or 'data/inc/blogincludereact.php' to...
[DSECRG-08-038] Multiple Local File Include Vulnerabilities in ezContents CMS 2.0.3
Digital Security Research Group DSecRG Advisory DSECRG-08-038 Application: ezContents CMS Versions Affected: 2.0.3 Application URL: http://www.ezcontents.org/ Vendor URL: http://www.visualshapers.com/ Bug: Multiple Local File Include Exploits: YES Reported: 05.08.2008 Second report: 18.08.2008...
Pluck CMS 4.5.2 Multiple Local File Inclusion Vulnerabilities
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-037 Application: Pluck CMS Versions Affected: 4.5.2 Vendor URL: http://www.pluck-cms.org/ Bug: Multiple Local File Include Exploits: YES Reported: 28.07.2008 Vendor Response: 03.08.2008 Solution: YES Date...
DSECRG-08-038.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-038 Application: ezContents CMS Versions Affected: 2.0.3 Application URL: http://www.ezcontents.org/ Vendor URL: http://www.visualshapers.com/ Bug: Multiple Local File Include Exploits: YES Reported: 05.08.2008 Second report: 18.08.2008...
DSECRG-08-037.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-037 Application: Pluck CMS Versions Affected: 4.5.2 Vendor URL: http://www.pluck-cms.org/ Bug: Multiple Local File Include Exploits: YES Reported: 28.07.2008 Vendor Response: 03.08.2008 Solution: YES Date of Public Advisory: 25.08.2008...
[DSECRG-08-037] Multiple Local File Include Vulnerabilities in Pluck CMS 4.5.2
Digital Security Research Group DSecRG Advisory DSECRG-08-037 Application: Pluck CMS Versions Affected: 4.5.2 Vendor URL: http://www.pluck-cms.org/ Bug: Multiple Local File Include Exploits: YES Reported: 28.07.2008 Vendor Response: 03.08.2008 Solution: YES Date of Public Advisory: 25.08.2008...
Pluck CMS 4.5.2 Multiple Local File Inclusion Vulnerabilities
Exploit for unknown platform in category web applications ============================================================= Pluck CMS 4.5.2 Multiple Local File Inclusion Vulnerabilities ============================================================= Digital Security Research Group DSecRG Advisory...
EZContents CMS 2.0.3 - Multiple Local File Inclusions
Digital Security Research Group DSecRG Advisory DSECRG-08-038 Application: ezContents CMS Versions Affected: 2.0.3 Application URL: http://www.ezcontents.org/ Vendor URL: http://www.visualshapers.com/ Bug: Multiple Local File Include Exploits: YES Reported: 05.08.2008 Second report: 18.08.2008...
DSECRG-08-036.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-036 Application: Freeway eCommerce Versions Affected: 1.4.1.171 Vendor URL: http://www.openfreeway.org/ Bugs: RFI, Multiple LFI, XSS Exploits: YES Reported: 27.06.2008 Second report: 04.07.2008 Vendor response: 06.07.2008 Solution: YES Dat...
Freeway 1.4.1.171 - includesmodulesfaqdeskfaqdesk_article_require.php?language Traversal Local File Inclusion
Freeway 1.4.1.171 - includesmodulesfaqdeskfaqdeskarticlerequire.php?language Traversal Local File Inclusion source: https://www.securityfocus.com/bid/30731/info Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker c...
Freeway 1.4.1.171 - templatesFreewayboxesloginbox.php?language Traversal Local File Inclusion
Freeway 1.4.1.171 - templatesFreewayboxesloginbox.php?language Traversal Local File Inclusion source: https://www.securityfocus.com/bid/30731/info Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit the...
[DSECRG-08-036] Multiple Security Vulnerabilities in Freeway eCommerce 1.4.1.171
Digital Security Research Group DSecRG Advisory DSECRG-08-036 Application: Freeway eCommerce Versions Affected: 1.4.1.171 Vendor URL: http://www.openfreeway.org/ Bugs: RFI, Multiple LFI, XSS Exploits: YES Reported: 27.06.2008 Second report: 04.07.2008 Vendor response: 06.07.2008 Solution: YES Dat...
Freeway 1.4.1.171 - templatesFreewayboxeswhos_online.php?language Traversal Local File Inclusion
Freeway 1.4.1.171 - templatesFreewayboxeswhosonline.php?language Traversal Local File Inclusion source: https://www.securityfocus.com/bid/30731/info Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit...
Freeway 1.4.1.171 - '/templates/Freeway/boxes/whos_online.php?language' Traversal Local File Inclusion
source: https://www.securityfocus.com/bid/30731/info Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal strings to view local files in the context of the...