CyBoards PHP Lite Default_Header.PHP远程文件包含漏洞

CyBoards PHP Lite是一款基于PHP的WEB应用程序。 CyBoards PHP Lite不正确过滤用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'DefaultHeader.PHP'脚本对用户提交的WEB参数缺少过滤，指定远程服务器上的文件作为包含参数，可导致以WEB权限执行任意命令。 Cyboards PHP Lite 1.21 目前没有解决方案提供： http://www.gold-sonata.com/index.phtml?content=script/forums&menu=script Coded by bd0rk || SOH-Cr...

cwmVote 1.0 (archive.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications =========================================================== cwmVote 1.0 archive.php Remote File Include Vulnerability =========================================================== cwmVote 1.0 File Include Vulnerability F0und3R: bd0rk ||...

cwmVote 1.0 - archive.php Remote File Inclusion

cwmVote 1.0 - archive.php Remote File Inclusion cwmVote 1.0 File Include Vulnerability F0und3R: bd0rk || SOH-Crew Website: www.soh-crew.it.tt Download: http://explorer.cwm-design.de/dirs/41/cwmVote.rar Vulnerable Code in archive.php Code: include$abs."inc/functions.inc.php";...

mxBB Module Profile CP 0.91c Remote File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================== mxBB Module Profile CP 0.91c Remote File Include Vulnerability ============================================================== mxBB Module Profile Control Panel 0.91c Remote Fil...

P-News 2.0 - user.txt Remote Password Disclosure

P-News 2.0 - user.txt Remote Password Disclosure P-News V² - user.txt Information Disclosure Vulnerability Critical Level : Dangerous Script Download: http://download.planerd.net/dir/php Bugfounder: Lu7k Contact Me : www.school-of-hack.de or [email protected]...

P-News v2 (user.txt) Remote Password Disclosure Vulnerability

No description provided by source. P-News V² - user.txt Information Disclosure Vulnerability Critical Level : Dangerous Script Download: http://download.planerd.net/dir/php Bugfounder: Lu7k Contact Me : www.school-of-hack.de or [email protected]...

P-News v2 (user.txt) Remote Password Disclosure Vulnerability

Exploit for unknown platform in category web applications ============================================================= P-News v2 user.txt Remote Password Disclosure Vulnerability ============================================================= P-News V2 - user.txt Information Disclosure Vulnerabili...

P-News 2.0 - 'user.txt' Remote Password Disclosure

P-News V² - user.txt Information Disclosure Vulnerability Critical Level : Dangerous Script Download: http://download.planerd.net/dir/php Bugfounder: Lu7k Contact Me : www.school-of-hack.de or [email protected] -----------------------------------------------------------------------------...