Oreon 1.4 / Centreon 1.4.1 - Multiple RFI Vulnerabilties

No description provided by source. By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file is:...

Oreon <= 1.2.3 RC4 (lang/index.php file) Remote InclusionVulnerability

No description provided by source. ------------------------------------------------------------------------------------------------------------------------ Script:oreon-1.2.3-RC4 Downlaoad:http://www.oreon-project.org/...

Centreon include/doc/get_image.php 'img' Parameter Traversal Arbitrary File Access

The remote host is running Centreon or Oreon, a web-based network supervision program based on Nagios. The version of Centreon / Oreon installed on the remote host fails to sanitize user-supplied input to the 'img' parameter of the 'include/doc/getimage.php' script before using it to display the...

CVE-2007-6485

Multiple PHP remote file inclusion vulnerabilities in Centreon 1.4.1 aka Oreon 1.4 allow remote attackers to execute arbitrary PHP code via a URL in the fileOreonConf parameter to 1 MakeXML.php or 2 MakeXML4statusCounter.php in include/monitoring/engine/...

CVE-2007-6485

CVE-2007-6485 affects Centreon/Oreon 1.4.1. It enables remote PHP code execution via the fileOreonConf parameter in MakeXML.php and MakeXML4statusCounter.php under include/monitoring/engine/, exploitable by unauthenticated attackers over the network. The root cause is improper handling/sanitizati...

oreon-rfi.txt

By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file is: ./oreon-1.4/www/include/monitoring/engine/MakeXML.php Another,virtuall...

Oreon/Centreon - Multiple Remote File Inclusion

By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file is: ./oreon-1.4/www/include/monitoring/engine/MakeXML.php Another,virtuall...

Oreon 1.4 / Centreon 1.4.1 Multiple RFI Vulnerabilties

No description provided by source. By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file is:...

Oreon 1.4 / Centreon 1.4.1 - Multiple Remote File Inclusion Vulnerabilities

By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file is: ./oreon-1.4/www/include/monitoring/engine/MakeXML.php Another,virtuall...

Oreon 1.4 Centreon 1.4.1 - Multiple Remote File Inclusion Vulnerabilities

Oreon 1.4 Centreon 1.4.1 - Multiple Remote File Inclusion Vulnerabilities By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion. Software: Oreon and Centreon Homepage:http://www.oreon-project.org/ or http://www.centreon.com/ Versions: 1.4Oreon and 1.4.1Centreon The vulnerable file...

Oreon 1.4 / Centreon 1.4.1 Multiple RFI Vulnerabilties

Exploit for unknown platform in category web applications ====================================================== Oreon 1.4 / Centreon 1.4.1 Multiple RFI Vulnerabilties ====================================================== By Michael Brooks Vulnerability Type: Multiple Remote File Inclusion...

CVE-2007-0360

PHP remote file inclusion vulnerability in lang/index.php in Oreon 1.2.3 RC4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the file parameter...

CVE-2007-0360

The CVE-2007-0360 issue is a PHP remote file inclusion in Oreon 1.2.3 RC4 and earlier, where the script lang/index.php unsafely uses the file parameter to include PHP code, enabling remote attackers to execute arbitrary code. Affected product: Oreon (web-based network supervision) prior to the fi...

EUVD-2007-0362

PHP remote file inclusion vulnerability in lang/index.php in Oreon 1.2.3 RC4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the file parameter...

CVE-2007-0360

PHP remote file inclusion vulnerability in lang/index.php in Oreon 1.2.3 RC4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the file parameter...

Oreon lang/index.php file Parameter Remote File Inclusion

The remote host is running Oreon, a web-based network supervision program based on Nagios. The installation of Oreon on the remote host fails to sanitize input to the 'file' parameter of the 'lang/index.php' script before using it to include PHP code. Regardless of PHP's 'registerglobals' setting...

Oreon &lt;= 1.2.3 RC4 (lang/index.php file) Remote InclusionVulnerability

No description provided by source. ------------------------------------------------------------------------------------------------------------------------ Script:oreon-1.2.3-RC4 Downlaoad:http://www.oreon-project.org/...

Oreon &lt;= 1.2.3 RC4 &#40;lang/index.php file&#41; Remote InclusionVulnerability

------------------------------------------------------------------------------------------------------------------------ Script:oreon-1.2.3-RC4 Downlaoad:http://www.oreon-project.org/...

Oreon 1.2.3 RC4 - langindex.php Remote File Inclusion

Oreon 1.2.3 RC4 - langindex.php Remote File Inclusion ------------------------------------------------------------------------------------------------------------------------ Script:oreon-1.2.3-RC4 Downlaoad:http://www.oreon-project.org/...

Oreon <= 1.2.3 RC4 (lang/index.php file) Remote InclusionVulnerability

Exploit for unknown platform in category web applications ====================================================================== Oreon = 1.2.3 RC4 lang/index.php file Remote InclusionVulnerability ======================================================================...