EUVD-2005-0802

Malware in sbrugna...

CVE-2005-1356

Cross-site scripting XSS vulnerability in includer.cgi script in The Includer allows remote attackers to inject arbitrary web script or HTML via the argument...

remote command execution in includer.cgi script

Tunis 24/04/2005 BUG found by fireboy [email protected] THERE ARE SOME BUGS IN includer.cgi SCRIPT THAT CAN SHOW SENSILBLES FILES IN A SYSTEM OR EXECUTE COMMANDS IN THE TARGET HOST WICH CAN COMPROMISE IT. IT IS ONLY FOR SECURITY AND EDUCATIONAL PURPOSE 1file showing...

includer10exec.pl.txt

!/usr/bin/perl K-C0d3r Includer.cgi 1.0 remote command execution K-C0d3r C0d3d By K-C0d3r, a www.x0n3-h4ck.org friend! I think the bug was discovered by Francisco Alisson. Greetz to: mZ, CorryL, Expanders, SiNaPsE, off, rikky, milw0rm. FK of to all RxBot kiddies as et, Gn, db. kc@K-C0d3r xpl$ per...

includercgi.txt

Hello to everyone I'm sorry if this was already posted but if it wasn't have a look at it. It seems that includer.cgi will do a very nice directory traversal for you but I don't know what version or other specific details but the vuln. is very high.I tried only a couple of them and it was enough...

CVE-2005-0801

CVE-2005-0801 describes a directory traversal vulnerability in the web application component includer.cgi of The Includer . The issue allows remote attackers to read arbitrary files by supplying directory traversal sequences (.. or a full pathname) in the URL, compromising confidentiality. The pr...