23 matches found
EUVD-2009-2219
Malware in sbrugna...
EUVD-2009-1761
Malware in sbrugna...
LightOpenCMS 'smarty.php' Local File Include Vulnerability
LightOpenCMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow...
LightOpenCMS 0.1 - smarty.php Remote File Inclusion
LightOpenCMS 0.1 - smarty.php Remote File Inclusion Exploit Title: LightOpen CMS Remote File Inclusion smarty.php Date: 2010-01-05 Author: Zer0 Thunder Software Link: http://sourceforge.net/projects/lightopencms/ Version: v0.1 Tested on: Windows XP sp2 Wamp CVE : Code : Exploit :...
LightOpenCMS 0.1 - 'smarty.php' Remote File Inclusion
Exploit Title: LightOpen CMS Remote File Inclusion smarty.php Date: 2010-01-05 Author: Zer0 Thunder Software Link: http://sourceforge.net/projects/lightopencms/ Version: v0.1 Tested on: Windows XP sp2 Wamp CVE : Code : Exploit : http://site.com/path/smarty.php?cwd=shell.txt?%00 Example :...
Directory traversal
Directory traversal vulnerability in locms/smarty.php in LightOpenCMS 0.1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the cwd parameter. NOTE: remote file inclusion attacks may be possible...
CVE-2009-2223
Directory traversal vulnerability in locms/smarty.php in LightOpenCMS 0.1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the cwd parameter. NOTE: remote file inclusion attacks may be possible...
CVE-2009-2223
LightOpenCMS 0.1 pre-alpha is affected by a local file inclusion (LFI) in smarty.php, exploitable via a directory traversal in the cwd parameter. An attacker can potentially include and execute arbitrary local files in the webserver context. Public references in connected documents confirm LightO...
LightOpenCMS 0.1 Local File Inclusion
LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://sourceforge.net/project/showfiles.php?groupid=251474 smarty.php define"SMARTYDIR",...
LightOpenCMS 0.1 - smarty.php?cwd Local File Inclusion
LightOpenCMS 0.1 - smarty.php?cwd Local File Inclusion LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download:...
LightOpenCMS 0.1 (smarty.php cwd) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ==================================================================== LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability ==================================================================== LightOpenCMS 0.1 smarty.php cwd...
LightOpenCMS 0.1 (smarty.php cwd) Local File Inclusion Vulnerability
No description provided by source. LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://sourceforge.net/project/showfiles.php?groupid=251474...
LightOpenCMS 0.1 - 'smarty.php?cwd' Local File Inclusion
LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://sourceforge.net/project/showfiles.php?groupid=251474 smarty.php define"SMARTYDIR",...
LightOpenCMS 0.1 pre-alpha Remote SQL Injection
Salvatore "drosophila" Fresta + Application: LightOpenCMS + Version: 0.1 pre-alpha + Website: http://sourceforge.net/projects/lightopencms + Bugs: A Remote SQL Injection + Exploitation: Remote + Date: 05 Jun 2009 + Discovered by: Salvatore Fresta aka drosophila + Author: Salvatore Fresta aka...
Sql injection
SQL injection vulnerability in index.php in LightOpenCMS 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-1766
SQL injection vulnerability in index.php in LightOpenCMS 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-1766
CVE-2009-1766 affects LightOpenCMS 0.1, where a SQL injection in index.php allows remote attackers to execute arbitrary SQL commands via the id parameter. The vulnerability arises in the input handling of id, enabling manipulation of the underlying database query. Public references include exploi...
CVE-2009-1766
SQL injection vulnerability in index.php in LightOpenCMS 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...
LightOpenCMS 0.1 (id) Remote SQL Injection Vulnerability
No description provided by source. + LightOpenCMS id SQL Injection Vulnerability + Author: Mi4night + Script: http://sourceforge.net/project/downloading.php?groupid=251474&filename=locms-0.1-pa.zip&a=4814604 + Injection:...
LightOpenCMS 0.1 SQL Injection
LightOpenCMS id SQL Injection Vulnerability + Author: Mi4night + Script: http://sourceforge.net/project/downloading.php?groupid=251474&filename=locms-0.1-pa.zip&a=4814604 + Injection: http://127.0.0.1/path/index.php?id=-1%27%20union%20select%201,2,@@version,4%20%23 + Requires: magicgpc == OFF +...