722 matches found
ZebraFeeds 1.0 - 'zf_path' Remote File Inclusion
To ConTacT mE @ wWw.Asb-May.net/bb ScRiPt:-http://cazalet.org/zebrafeeds/releases/zebrafeeds-current.zip Discovered By:- ThE dE@Th aggregator.php:- requireonce$zfpath . 'includes/feed.php'; requireonce$zfpath . 'includes/view.php'; requireonce$zfpath . 'includes/template.php'; requireonce$zfpath...
CVE-2007-0762
PHP remote file inclusion vulnerability in includes/functions.php in phpBB++ Build 100 allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...
phpBB++ Build 100 - 'phpbb_root_path' Remote File Inclusion
C xoron Name: phpBB++ phpbbrootpath Remote File Include Exploit Author: xoron Exploit coded by xoron Download: http://sourceforge.net/project/showfiles.php?groupid=86688&packageid=90098 xoron.biz - xoron.info Thanx: str0ke, kacper, k1tk4t, SHiKA, can bjorn Tesekkurler: chaos, pang0, DJR POC:...
NSGalPHP Config.Inc.PHP远程文件包含漏洞
NSGalPHP是一款基于PHP的WEB应用程序。 NSGalPHP不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'Config.Inc.PHP'脚本对用户提交的'racineTBS'参数缺少过滤,指定远程服务器上的文件作为包含参数,可导致以WEB权限执行任意命令。 nsGalPHP 目前没有解决方案提供,请关注以下链接: http://www.easy-script.com/compt.php?id=3521 http://www.example.com/path/includes/config.inc.php?racineTBS=PHPSHELL...
CVE-2006-6938
CVE-2006-6938 is a directory traversal in NitroTech 0.0.3a (distributed before 2006) that allows remote attackers to include arbitrary files via ".." in the root parameter of includes/common.php. Documents report a network-based, low-complexity attack with no authentication, potentially exposing ...
mxBB Module kb_mods 2.0.2 - Remote File Inclusion
mxBB Module kbmods 2.0.2 - Remote File Inclusion | \ | / | \ \ / | | | | | \ / | \ \ / / | | | | '| | |/| |/ \ / / \ / / | | '| | | / | | || | | | | | | | | \ / | | | | || \ \ |/|| || ||,//\ / ||| ,|/...
mxBB Module Profile CP 0.91c Remote File Include Vulnerability
Exploit for unknown platform in category web applications ============================================================== mxBB Module Profile CP 0.91c Remote File Include Vulnerability ============================================================== mxBB Module Profile Control Panel 0.91c Remote Fil...
Envolution <= 1.1.0 (PNSVlang) Remote Code Execution Exploit
No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...
CVE-2006-6231
vuBB 0.2.1 and earlier allows remote attackers to obtain sensitive information via a direct request to includes/vubb.php, which leaks the path in an error message...
Drake CMS < 0.2.3 ALPHA rev.916 - Remote File Inclusion
Coding 4 Fun c4f.pl Drake CMS v0.2.2 ALPHA rev.846 http://drakecms.org ; Class = Remote File Inclusion ; Download = https://sourceforge.net/project/showfiles.php?groupid=166901&packageid=192077&releaseid=420102 ; Found by = GregStar gregstaratc4fdotpl ;...
PT-2006-6318 · Phpbb · Phpbb
Name of the Vulnerable Software and Affected Versions: phpBB versions prior to the version that fixes the issue in Fully Modded phpBB phpbbfm 2021.4.40 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the phpbb root path parameter. This is a result of a PH...
CVE-2006-5291
PHP remote file inclusion vulnerability in admin/includes/spaw/spawcontrol.class.php in Download-Engine 1.4.2 allows remote attackers to execute arbitrary PHP code via a URL in the spawroot parameter. NOTE: CVE analysis suggests that this issue is actually in a third party product, SPAW Editor PH...
CVE-2006-5291
The vulnerability CVE-2006-5291 affects Download-Engine 1.4.2 through a PHP remote file inclusion in admin/includes/spaw/spaw_control.class.php, exploitable via a URL in the spaw_root parameter to execute arbitrary PHP code on the server. The issue is noted as potentially in the third-party SPAW ...
CVE-2006-5235
The CVE-2006-5235 entry describes a PHP remote file inclusion (RFI) in Dimension of phpBB (0.2.6 and earlier) via the phpbb_root_path parameter, allowing an attacker to execute arbitrary PHP code. Related records (CVE-2006-7174) describe the same issue in the Dimension module’s includes/functions...
CVE-2006-5224
The CVE-2006-5224 issue is a PHP remote file inclusion vulnerability in Dimitri Seitz Security Suite IP Logger 1.0.0 (dwingmods for phpBB). The flaw occurs in includes/logger_engine.php and allows an attacker to execute arbitrary PHP code by supplying a URL in the phpbb_root_path parameter. The c...
Dimension of phpBB <= 0.2.6 (phpbb_root_path) Remote File Includes
Exploit for unknown platform in category web applications ================================================================== Dimension of phpBB | | \ \ / / '..' Author: SpiderZ Dimension of phpBB Remote File Inclusion Vulnerability For: Dimension of phpBB 0.2.5 phpBB 2.0.21 Remote File Inclusion...
phpGreetz <= 0.99 (footer.php) Remote File Include Vulnerability
No description provided by source. Author: [email protected] mozi phpGreetz Remote File Inclusion Vulnerability Greetz: Raver phpfreaks eu.undernet.org Greetz: SpiderZ , fUSiON ---------------------------------------------------------------- Download:...
Back-end-0.4.5.txt
Back-end = 0.4.5 Remote File Include Vulnerabilities Script.............. :Back-end Discovered By.... : Root3rH3ll Location .......... : Iran Class.............. : Remote Original Advisory : http://Www.PersainFox.com We ArE : Root3rH3LL & Arash.Rj Spical TNX Irania Hackers : Aria-Security , Crouz...
[Full-disclosure] Advisory 06/2006: PHProjekt (Remote) Include Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hardened-PHP Project www.hardened-php.net -= Security Advisory =- Advisory: PHProjekt Remote Include Vulnerabilities Release Date: 2006/09/29 Last Modified: 2006/09/29 Author: Stefan Esser [email protected] Application: PHProjekt 5.1.1 Severity:...
PHP MyWebMin 1.0 Remote File Include
+PHP MyWebMin 1.0 Remote File Include +Advisory 5 +Product :PHP MyWebMin +Develop: +www.josh.ch/joshch/php-tools/phpmywebmin,download.html +Vulnerable: Remote File Includes +Risk:High +Class:Remote +Discovered:by Kernel-32 +Contact: [email protected] +Homepage: http://kernel-32.blogspot.com...