TikiWiki <= 1.9.8.1 Local File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ======================================================== TikiWiki = 1.9.8.1 Local File Inclusion Vulnerabilities ======================================================== =====================================================================...

TikiWiki 1.9.8.1 - Local File Inclusion

====================================================================== TikiWiki Impact: Local File Inclusion Status: patch available ------------------------------ Affected software description: ------------------------------ Application: TikiWiki Version: = 1.9.8.1 Vendor: http://tikiwiki.org...

Coppermine &lt;= 1.4.12 Cross Site Scripting and Local File Inclusion

============================================================ Coppermine = 1.4.12 Cross Site Scripting and Local File Inclusion ============================================================ Author: L4teral l4teral 4t gmail com Impact: Cross Site Scripting/Local File Inclusion Status: patch availabl...

coppermine1412-xss.txt

============================================================ Coppermine Impact: Cross Site Scripting/Local File Inclusion Status: patch available ------------------------------ Affected software description: ------------------------------ Application: Coppermine Photo Gallery Version: = 1.4.12...

Joomla! 1.5 Beta 2 - Search Remote Code Execution

Joomla! 1.5 Beta 2 - Search Remote Code Execution SEC Consult Security Advisory ======================================================================= title: Remote command execution in Joomla! CMS program: Joomla! vulnerable version: 1.5 beta 2 Earlier 1.5 versions may be vulnerable too! impact...

EVA-Web 1.1&lt;= 2.2 (index.php3) Remote File Inclusion Vulnerabilities

No description provided by source. / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ Program Title EVA-Web 1.1=2.2 Remote File Inclusion Note...

devcode2.txt

/ version 0.5 Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows .ANI LoadAniIcon Stack Overflow For Hardware DEP XP SP2 CVE-2007-1765 Description: A vulnerability has been identified in Microsoft Windows, which could be exploited by remote attackers to take complete control of an affected...

IBM WebSphere应用服务器代码泄露漏洞

IBM Websphere Application Server是一款功能强大的WEB应用服务程序。 IBM Websphere Application Server处理畸形HTTP请求存在问题，远程攻击者可以利用此漏洞获得JSP代码信息。 在根据4种不同配置情况下，IBM Websphere Application Server可导致JSP源代码内容泄露： 1，从一个应用程序WAR服务JSP，当ibm.web.ext.xmi文件中fileServingEnabled设置为ture，存储在应用程序WAR目录下JSP文件可导致源代码泄露。...

XSS vulnerability in the online help system of several Cisco products

What: cross-site scripting XSS vulnerability in the online help system distributed with several Cisco products Release Date: 03-15-2007 Application: 14 different applications verified by Cisco up to now. For a complete list of affected products see...

Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops &amp; Desktops

======= Summary ======= Today: 31 January 2007 Reference: NGS00403 Discover: Mark Litchfield Name: Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops & Desktops r11.1 Vendor: Computer Associates Systems Affected: BrightStor ARCserve Backup for Laptops & Desktops...

Multiple Vulnerabilities in AlternC version 0.9.5

ground418 security advisory Date: 28-11-2006 Subject: Multiple Vulnerabilities in AlternC version 0.9.5 and below. Author: Vincent Audet Mnard [email protected] Original File: http://www.ground418.org/exploits/read.php?file=06-alternC-095.txt Related Files:...

PT-2006-6587 · Exporia · Exporia

Name of the Vulnerable Software and Affected Versions: Exporia version 0.3.0 Description: A remote file inclusion issue in common.php allows remote attackers to execute arbitrary PHP code via a URL in the lan parameter. However, it's noted that further analysis by SecurityFocus disputes this issu...

phpBB Insert User Mod 0.1.2 - Remote File Inclusion

phpBB Insert User Mod 0.1.2 - Remote File Inclusion !/usr/bin/perl PHPBB insert user 0.1.2 Class: Remote File Include Vulnerability Patch: unavailable Date: 2006/10/12 Remote: Yes Type: high Site: http://www.grahameames.co.uk/phpbb/downloads/insertuser0.1.2.zip use IO::Socket; use LWP::Simple;...

simpleboard110.txt

World Defacers Team ====================================== --------------------Summary---------------- eVuln ID: WD23 Vendor: SimpleBoard Mambo Component 1.1.0 Vendor's Web Site: mamboxchange.com/projects/simpleboard Class: Remote PoC/Exploit: Available Solution: Not Available Discovered by:...

cutenews13.txt

Welcome people In World Defacers Team World Defacers Team ====================================== --------------------Summary---------------- eVuln ID: WD22 Vendor: CuteNews 1.3. Vendor's Web Site: http://cutephp.com/ Software: Live Customer Support Solution :- http://www.pansionat.net/novost/...

phpAutoMembersArea 3.2.5 &#40;$installed_config_file&#41; Remote File Inclusion

+-------------------------------------------------------------------- + + phpAutoMembersArea 3.2.5 $installedconfigfile Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: phpAutoMembersArea 3.2.5 + Venedor ...........:...

sipXtapi Cseq header buffer overflow

Added: 07/17/2006 CVE: CVE-2006-3524 BID: 18906 OSVDB: 27122 Background The Session Initiation Protocol SIP is a signaling protocol for a variety of uses, including instant messanging and Voice over Internet Protocol. sipXtapi is a client library for SIP-based user agents. It is included in Pingt...

patchlink6.txt

------------------------------------------------------------- PatchLink Update Server 6 SQL Injection ------------------------------------------------------------- Severity: Critical Date: June 28, 2006 Class: Remote Status: Patch Available Discovered by: Chris Steipp, Novacoast csteipp at...

Multiple Vulnerabilities in PatchLink Update Server 6

------------------------------------------------------------- PatchLink Update Server 6 SQL Injection ------------------------------------------------------------- Severity: Critical Date: June 28, 2006 Class: Remote Status: Patch Available Discovered by: Chris Steipp, Novacoast csteipp at...

[KAPDA::#44] - NewsCMSLite Login ByPass by Cookie

KAPDA::44 - NewsCMSLite Login ByPass by Cookie Vulnerability KAPDA New advisory Vulnerable product : NewsCMSLite Vendor: http://www.katywhitton.com Vulnerability: Authentication Flaw in 'newsadmin.asp' Lets Remote User Gain Administrative Access . Date : -------------------- Found : 2006/05/21...