EUVD-2006-3606

Malware in sbrugna...

CVE-2006-3611

Directory traversal vulnerability in pm.php in Phorum 5 allows remote authenticated users to include and execute arbitrary local files via directory traversal sequences in the GLOBALStemplate parameter, as demonstrated by injecting PHP sequences into a log file, which is then included by pm.php...

CVE-2006-3611

This CVE concerns Phorum 5 with a directory traversal flaw in pm.php. Remote authenticated users could cause Local File Inclusion via the GLOBALS[template] parameter, by injecting PHP sequences into a log file that pm.php later includes, enabling arbitrary local file execution. The description do...

Phorum 5 (pm.php) Arbitrary Local Inclusion Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "PHORUM 5 arbitrary local inclusion exploit\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork: "This forum powered by Phorum."\n\n"; / works with: registerglobals=On...

Phorum 5 (pm.php) Arbitrary Local Inclusion Exploit

Exploit for unknown platform in category web applications =================================================== Phorum 5 pm.php Arbitrary Local Inclusion Exploit =================================================== !/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$string$i...

[SA14554] Phorum Unspecified Cross-Site Scripting Vulnerability

---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...