9 matches found
EUVD-2010-2148
Malware in sbrugna...
EUVD-2007-1440
Malware in sbrugna...
CVE-2010-2132
Multiple PHP remote file inclusion vulnerabilities in Open Education System OES 0.1 beta allow remote attackers to execute arbitrary PHP code via a URL in the CONFINCLUDEPATH parameter to 1 forum/admin.php and 2 plotgraph/index.php in admin/modules/modules/, and 3 adminuser/modadmuser.php and 4...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Open Education System OES 0.1 beta allow remote attackers to execute arbitrary PHP code via a URL in the CONFINCLUDEPATH parameter to 1 forum/admin.php and 2 plotgraph/index.php in admin/modules/modules/, and 3 adminuser/modadmuser.php and 4...
CVE-2010-2132
Multiple PHP remote file inclusion vulnerabilities in Open Education System OES 0.1 beta allow remote attackers to execute arbitrary PHP code via a URL in the CONFINCLUDEPATH parameter to 1 forum/admin.php and 2 plotgraph/index.php in admin/modules/modules/, and 3 adminuser/modadmuser.php and 4...
CVE-2010-2132
Open Education System (OES) 0.1 beta is affected by multiple PHP remote file inclusion vulnerabilities. The issue allows an attacker to cause remote PHP code execution by supplying a crafted URL to the CONF_INCLUDE_PATH parameter in specific scripts: forum/admin.php and plotgraph/index.php under ...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Open Education System OES 0.1beta allow remote attackers to execute arbitrary PHP code via a URL in the CONFINCLUDEPATH parameter to 1 lib-account.inc.php, 2 lib-file.inc.php, 3 lib-group.inc.php, 4 lib-log.inc.php, 5 lib-mydb.inc.php, 6...
CVE-2007-1446
Multiple PHP remote file inclusion vulnerabilities in Open Education System OES 0.1beta allow remote attackers to execute arbitrary PHP code via a URL in the CONFINCLUDEPATH parameter to 1 lib-account.inc.php, 2 lib-file.inc.php, 3 lib-group.inc.php, 4 lib-log.inc.php, 5 lib-mydb.inc.php, 6...
CVE-2007-1446
Multiple PHP remote file inclusion vulnerabilities in Open Education System OES 0.1beta allow remote attackers to execute arbitrary PHP code via a URL in the CONFINCLUDEPATH parameter to 1 lib-account.inc.php, 2 lib-file.inc.php, 3 lib-group.inc.php, 4 lib-log.inc.php, 5 lib-mydb.inc.php, 6...