phpMyAdmin Multiple Path Disclosure Vulnerabilities (PMASA-2016-1, PMASA-2016-6, PMASA-2016-8)

The phpMyAdmin application hosted on the remote web server is affected by multiple path disclosure vulnerabilities in multiple scripts. An unauthenticated, remote attacker can exploit these vulnerabilities, via a specially crafted request, to disclose the full path of the directory where phpMyAdm...

[flunym0us] Vulnerability Scanner for Wordpress and Moodle

Flunym0us is a Vulnerability Scanner for Wordpress and Moodle designed by Flu Project Team. Flunym0us has been developed in Python. Flunym0us performs dictionary attacks against Web sites. By default, Flunym0us includes a dictionary for Wordpress and other for Moodle. Operation Flunym0us requires...

path_disclosure

This plugin greps every page for path disclosure vulnerabilities like: C:\www\files\… /var/www/htdocs/… The results are saved to the KB, and used by all the plugins that need to know the location of a file inside the remote web server. Plugin type Grep Options This plugin doesnt have any user...

WordPress Plugin social discussions 6.1.1 - Multiple Vulnerabilities

WordPress Plugin social discussions 6.1.1 - Multiple Vulnerabilities waraxe-2012-SA093 - Multiple Vulnerabilities in Wordpress Social Discussions Plugin ====================================================================================== Author: Janek Vind "waraxe" Date: 17. October 2012...

Gentoo Security Advisory GLSA 200507-02 (wordpress)

The remote host is missing updates announced in advisory GLSA 200507-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Fedora 7 : cacti-0.8.7b-1.fc7 (2008-1737)

XSS vulnerabilities Path disclosure vulnerabilities SQL injection vulnerabilities HTTP response splitting vulnerabilities bug0000855: Unnecessary and faulty DEF generation for CF:AVERAGE bug0001083: Small visual fix for Cacti in 'View Cacti Log File' bug0001089: Graph xport modification to...

Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities

netVigilance Security Advisory 35 Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities Description: Calendarix is a powerful and easy to use calendar based on PHP and MySQL. It has been developed with ease of use and quick access to information in mind. It provides the user...

myEvent version 1.6 Multiple Path Disclosure Vulnerabilities

netVigilance Security Advisory 24 myEvent version 1.6 Multiple Path Disclosure Vulnerabilities Description: myEvent is Dynamic Calendar based Events Management system with admin panel for adding events, edit and delete built using PHP & mySQL. Display today's event and future events links on the...

w-agora version 4.2.1 Multiple Path Disclosure Vulnerabilities

netVigilance Security Advisory 14 w-agora version 4.2.1 Multiple Path Disclosure Vulnerabilities Description: w-agora is a set of scripts written in PHP. This package is intended to allow users to share, exchange and publish information, files and discussions over the web. Multiple path disclosur...

PHPay 2.2 - Multiple Full Path Disclosure Vulnerabilities

PHPay 2.2 - Multiple Full Path Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/7309/info phPay has been reported prone to multiple path disclosure vulnerabilities. It has been reported that when specially crafted requests are made for many phPay pages and include files, an...

PostNuke 0.72x Members_List Module - Full Path Disclosure

source: https://www.securityfocus.com/bid/7218/info Multiple path disclosure vulnerabilities have been reported in various PHP scripts used by PHP-Nuke. The issue occurs when an invalid URI parameter is passed to certain scripts. The affected scripts do not provide sufficient error handling for...

PHP-Nuke 6.0 - Multiple Full Path Disclosure Vulnerabilities

PHP-Nuke 6.0 - Multiple Full Path Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/6406/info Multiple path disclosure vulnerabilities have been discovered in PHP-Nuke. This issue occurs when requesting a PHP script that shouldn't be accessed directly. Exploiting this issue wil...