CVE-2006-4418

CVE-2006-4418 describes a directory traversal in Wikepage 2006.2a Opus 10 (index.php) that lets remote attackers include arbitrary local files via the lng parameter, demonstrated by injecting PHP code into a log file. The vulnerability enables potential partial disclosure and modification (per CV...

CVE-2006-4418

Directory traversal vulnerability in index.php for Wikepage 2006.2a Opus 10 allows remote attackers to include arbitrary local files via the lng parameter, as demonstrated by inserting PHP code into a log file...

[SA21542] Wikepage "lng" Local File Inclusion Vulnerability

TITLE: Wikepage "lng" Local File Inclusion Vulnerability SECUNIA ADVISORY ID: SA21542 VERIFY ADVISORY: http://secunia.com/advisories/21542/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Wikepage Opus 10 http://secunia.com/product/11682/...

Wikepage Opus 10 <= 2006.2a (lng) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl WIKEPAGE = V2006.2a Opus 10 Remote Command Execution Exploit ------------------------------------------------------------- IHST: h4ckerz.com / hackerz.ir AST : Aria-Security.Net Kapda : kapda.ir coded & discovered By Hessam-x Hessamx -at-...

Wikepage Opus 10 <= 2006.2a (lng) Remote Command Execution Exploit

Exploit for unknown platform in category web applications ================================================================== Wikepage Opus 10 "; $socket = IO::Socket::INET-newProto="tcp", PeerAddr="$server", PeerPort="http80" || die "- Cannot not connect to host !\n"; print $socket "GET...

Wikepage Opus 10 2006.2a (lng) - Remote Command Execution

Wikepage Opus 10 2006.2a lng - Remote Command Execution !/usr/bin/perl WIKEPAGE "; $socket = IO::Socket::INET-newProto="tcp", PeerAddr="$server", PeerPort="http80" || die "- Cannot not connect to host !\n"; print $socket "GET ".$path.$pcode." HTTP/1.1\r\n"; print $socket "User-Agent:...