Lucene search
K

6 matches found

NVD
NVD
added 2007/07/05 8:30 p.m.13 views

CVE-2007-3585

PHP remote file inclusion vulnerability in games.php in MyCMS 0.9.8 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the id parameter...

7.5CVSS7.6AI score0.0234EPSS
Exploits1References3
Prion
Prion
added 2007/07/05 8:30 p.m.13 views

Code injection

Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and earlier allow remote attackers to inject arbitrary PHP code into 1 a score.txt file via the score parameter, or 2 a setby.txt file via a login cookie, which is then included by games.php. NOTE: programs that use games.php...

7.5CVSS8AI score0.02312EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2007/07/05 8:0 p.m.21 views

CVE-2007-3586

Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and earlier allow remote attackers to inject arbitrary PHP code into 1 a score.txt file via the score parameter, or 2 a setby.txt file via a login cookie, which is then included by games.php. NOTE: programs that use games.php...

7.5AI score0.02312EPSS
Exploits1References4
Cvelist
Cvelist
added 2007/07/05 8:0 p.m.26 views

CVE-2007-3587

MyCMS 0.9.8 and earlier allows remote attackers to gain privileges via the admin cookie parameter, as demonstrated by a post to admin/settings.php that injects PHP code into settings.inc, which can then be executed via a direct request to index.php...

7.2AI score0.02887EPSS
Exploits1References6
Exploit DB
Exploit DB
added 2007/07/03 12:0 a.m.31 views

MyCMS 0.9.8 - Remote Command Execution (2)

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argcNo new score set"; elseif $score $data $file1 = "snakescore.txt"; $file2 = "snakesetby.txt"; $file1h = fopen$file1, 'w' or die"can't open file"; $file2h = fopen$file2, 'w' or die"can't open file"...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/03 12:0 a.m.38 views

MyCMS 0.9.8 - Remote Command Execution (1)

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n";...

7.4AI score
Exploits0
Rows per page
Query Builder