7 matches found
EUVD-2006-5392
Malware in sbrugna...
EUVD-2005-1441
Malware in sbrugna...
ultrize timesheet 1.2.2 - Remote File Inclusion
ultrize timesheet 1.2.2 - Remote File Inclusion ===================================================================================== o Ultrize TimeSheet 1.2.2 Remote File Inclusion Vulnerability Software : Ultrize TimeSheet version 1.2.2 Vendor : http://www.ultrize.com/ Download :...
CVE-2007-0190
CVE-2007-0190 is a PHP remote file inclusion vulnerability in the edit_address.php component of the edit-x ecommerce platform. An attacker can force the application to include a remote URL via the include_dir parameter, enabling arbitrary PHP code execution on the server. Affected product: edit-x...
MiniBill config[include_dir]参数远程文件包含漏洞
MiniBill是用PHP编写的ISP计费软件。 MiniBill处理用户请求时存在输入验证漏洞,远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 MiniBill的actions/ipn.php脚本没有正确验证configincludedir参数的输入,允许攻击者通过包含本地或外部资源的任意文件导致执行任意代码。成功攻击要求打开了registerglobals。 Ultrize LLC MiniBill v1.22 Beta 我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
CVE-2005-1438
PHP remote file inclusion vulnerability in main.php in osTicket allows remote attackers to execute arbitrary PHP code via the includedir parameter...
CVE-2005-1438
The connected documents confirm a Remote File Include vulnerability in osTicket variants, specifically CVE-2005-1438, via the include_dir parameter in main.php. The issue affects osTicket versions up to 1.2.7 (per Tenable NASL “osTicket <= 1.2.7 Multiple Vulnerabilities”) and is included among...