3 matches found
CVE-2006-4863
Multiple PHP remote file inclusion vulnerabilities in Marc Cagninacci mcLinksCounter 1.1 allow remote attackers to execute arbitrary PHP code via a URL in the langfile parameter in 1 login.php, 2 stats.php, 3 detail.php, or 4 erase.php. NOTE: CVE and a third party dispute this vulnerability,...
CVE-2006-4863
MCLinksCounter 1.1 has a reported vulnerability where the langfile parameter in login.php, stats.php, detail.php, and erase.php could enable remote file inclusion and arbitrary PHP code execution. The connected PT-2006-5617 entry notes that in this version the langfile parameter is set to english...
phpmcnews13.txt
-- == -- == -- == -- == -- == -- == -- == -- == -- == -- Name: PHP mcNews Version: 1.3 Homepage: http://www.phpforums.net/index.php?dir=dld Author: Filip Groszynski VXSfx Date: 7 March 2005 -- == -- == -- == -- == -- == -- == -- == -- == -- == -- Vulnerable code in mcNews/admin/header.php:...