31 matches found
Webid 1.0.6 - Multiple Vulnerabilities
WeBid is an open-source auction script package. Although still in beta stages WeBid is one of the best open-source solutions for getting an auction site up and running quickly and cheaply. Written in the popular scripting language PHP and with a large collection of highly customisable features...
Piwik core/Loader.php Trojaned Distribution
The version of Piwik installed on the remote web server contains a trojaned backdoor, and allows the execution of arbitrary PHP code subject to the privileges under which the web server operates. It is likely to have been installed from a copy of the file 'latest.zip' downloaded from the project'...
weBid 1.0.5 - Directory Traversal
Author: loneferret of Offensive Security Product: WeBid Version: 1.0.4 & 1.0.5 and maybe older versions Vendor Site: http://www.webidsupport.com Software Download: http://sourceforge.net/projects/simpleauction/files/simpleauction/WeBid%20v1.0.5/WeBid-1.0.5.zip/download/download Other related...
Gocart 1.0.2 Remote File Inclusion
============================== gocart-1.0.2 RFI Vulnerability ============================== Vendor: http://s3.amazonaws.com/gocart/gocart-1.0.2.zip Date: 2012-1-27 Author : indoushka Exploit By indoushka ------------- Function: includeonce File: CodeIgniter.php Line: 10 Exploit:...
pepsicms-rfi.txt
Dear Packetstormsecurity ! I found Vulnerability in Pepsi CMS here is the description ======================================= Pepsi CMS template-loader.php Remote File Include ======================================= ::Home: http://sourceforge.net/projects/pepsicms/ ::Vuln Type : Remote File Inclu...
WordPress v2.1.3 >> remote file include~
by : www.hackeraz.ir userz , saeid... ++++++++++++++++++++++++++++++++++++ WordPress 2.1.3 Remote File Inclusion Affected Software .: WordPress 2.1.3 Download..: http://wordpress-deutschland.org Risk ..............: high Date .........: 25/4/2007 Found by ..........: s433donlylinux Contact...
ariadne-rfi.txt
Title : Ariadne = 2.4.1 Multiple Remote File Include Vulnerabilities Author : ajann Script Page : http://www.ariadne-cms.org/en/download/ Vuln; Files loader.php loader.cmd.php /Files Code,1 loader.php Error: .. .... require$ariadne."/configs/ariadne.phtml";...
CVE-2006-5067
PHPSaTK (PHP System Administration Toolkit) is affected by a remote file inclusion issue in loader.php via a URL in GLOBALS[config], allowing arbitrary PHP code execution. Affected component is loader.php in PHPSaTK; root cause is RFI through GLOBALS[config], as described in multiple sources. Som...
phpstak <= Remote File Include Vulnerability
PerSiaNFoX DigitaL SecuritY TeaM phpsatk= Remote File Include Vulnerabilities Script...
CVE-2005-1181
NOTE: this issue has been disputed by the vendor. PHP remote code injection vulnerability in loader.php for Ariadne CMS 2.4 allows remote attackers to execute arbitrary PHP code by modifying the ariadne parameter to reference a URL on a remote web server that contains the code. NOTE: the vendor h...
CVE-2005-1181
Ariadne CMS 2.4 is cited as affected by a PHP remote code injection in loader.php via the ariadne parameter referencing a remote URL. The vendor disputes the issue, arguing loader.php must include ariadne.inc (defining $ariadne) and cannot be modified by an attacker; CVE personnel have partially ...