2 matches found
CVE-2008-6548
The rst parser parser/textrst.py in MoinMoin 1.6.1 does not check the ACL of an included page, which allows attackers to read unauthorized include files via unknown vectors...
phpWebLog <= 0.5.3 arbitrary file inclusion (VXSfx)
-- == -- == -- == -- == -- == -- == -- == -- == -- == -- Name: phpWebLog Version: = 0.5.3 Homepage: http://phpweblog.org/ Author: Filip Groszynski VXSfx Date: 7 March 2005 -- == -- == -- == -- == -- == -- == -- == -- == -- == -- Vulnerable code in include/init.inc.php: ... Allowed HTML tags in...