EUVD-2007-5756

Malware in sbrugna...

EUVD-2006-5788

Malware in sbrugna...

EUVD-2006-2396

Malware in sbrugna...

EUVD-2006-4445

Malware in sbrugna...

EUVD-2006-1929

Malware in sbrugna...

EUVD-2006-4751

Malware in sbrugna...

Jinzora <= 2.1 (media.php) Remote File Include Vulnerability

No description provided by source. Jinzora = 2.1 Remote File Inclusion Download Source : http://www.jinzora.com/downloads/j2.1.tar.gz Found By : k1tk4t - k1tk4t4tnewhack.org Location : Indonesia -- newhackdotorg file ; media.php bugs ; // include classes for extending. requireonce$includepath...

Fedora 16 : php-pear-CAS-1.3.0-2.fc16 (2012-4119)

Upstream changelog Changes in version 1.3.0 Bug Fixes : - the saml logout url should be parsed urlencoded 24 dlineate - fix a proxy mode bug introduced in a previous comitt 16 Adam Franco - Fix includepath order so that the phpCAS path takes precedence 13 Adam Franco - fix invalid characters in t...

Dark Hart Portal - &#039;login.php&#039; Remote File Inclusion

------------------------------------------------------------------------------------- Dark Portal login.php Remote File Inclusion Vulnerability ------------------------------------------------------------------------------------- Author: CoBRa21 Mail: [email protected] Script Download:...

PHPAuctionSystem - Multiple Remote File Inclusions

»=======================================================================================================-X » » » PHPAuctionSystem Multiple Remote File Inclusion Vulnerability » » » » ======= ------d-------m------ ==== ==== » » || = | |o o| | || || || » » || = |||| || || » » =======...

PHPauction 'include_path'远程文件包含漏洞

BUGTRAQ ID: 28284 CNCAN ID:CNCAN-2008032103 PHPauction是一款基于PHP的WEB应用程序。 PHPauction不正确检查用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意PHP命令。 问题存在于多个脚本对用户提交的'includepath'参数缺少过滤，指定远程服务器上的任意文件作为包含对象，可导致以WEB权限执行任意PHP命令。 PHPAuction PHPAuction 2.51 目前没有解决方案提供： http://www.johnrayfield.com/phpauction/...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in PHPauction GPL 2.51 allow remote attackers to execute arbitrary PHP code via a URL in the includepath parameter to 1 converter.inc.php, 2 messages.inc.php, and 3 settings.inc.php in includes/...

CVE-2007-2345

CVE-2007-2345 affects CodeWand phpBrowse. The vulnerability is a PHP remote file inclusion in include/include_stream.inc.php that allows remote attackers to execute arbitrary PHP code via a URL supplied in the include_path parameter. According to the NVD entry, the flaw yields a CVSS v2 base scor...

CVE-2007-0584

PHP remote file inclusion vulnerability in membres/membreManager.php in PhP Generic Library & Framework for comm g-neric allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter...

PhP Generic library &amp; framework &#40;include_path&#41; Remote File Include Exploit

----------------------------------------------- PhP Generic library & framework includepath Remote File Include Exploit ----------------------------------------------- Author: xoron xoron.biz ----------------------------------------------- Code: require $GLOBALSincludepath."configmember.php";...

PhP Generic library &amp; framework (include_path) RFI Vulnerability

No description provided by source. ----------------------------------------------- PhP Generic library & framework includepath Remote File Include Exploit ----------------------------------------------- Author: xoron xoron.biz ----------------------------------------------- Code: require...

PhP Generic library & framework (include_path) RFI Vulnerability

Exploit for unknown platform in category web applications ================================================================ PhP Generic library & framework includepath RFI Vulnerability ================================================================ -----------------------------------------------...

PHP Generic library &amp; Framework - &#039;INCLUDE_PATH&#039; Remote File Inclusion

----------------------------------------------- PhP Generic library & framework includepath Remote File Include Exploit ----------------------------------------------- Author: xoron xoron.biz ----------------------------------------------- Code: require $GLOBALSincludepath."configmember.php";...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Advanced Guestbook 2.4.2 allow remote attackers to execute arbitrary PHP code via a URL in the includepath parameter to 1 index.php, 2 addentry.php, or 3 picture.php, a different set of vectors than CVE-2006-5804. NOTE: this issue has been...

CVE-2007-0530

CVE-2007-0530 covers multiple PHP remote file inclusion in Advanced Guestbook 2.4.2 via the include_path parameter used by index.php, addentry.php, or picture.php. The issue, similar to CVE-2006-5804, is that an attacker could cause PHP code execution by supplying a URL to include_path. Several c...