EUVD-2008-2660

Malware in sbrugna...

AContent 1.3 - Local File Inclusion

No description provided by source. Exploit Title: AContent 1.3 Local File Inclusion Date: 21-03-2013 Author: DaOne Vendor Homepage: http://atutor.ca/acontent/ Software Link: https://sourceforge.net/projects/acontent/files/AContent-1.3.tar.gz/download Category: webapps/php Version: 1.3 Tested on:...

w-CMS 2.0.1 - Remote Code Execution

Exploit Title: w-CMS 2.0.1 Remote Code Execution Vulnerability Google Dork: intext:"Powered by w-CMS" Date: 15/08/2013 Exploit Author: ICheerNo0M - http://icheernoom.blogspot.com/ Vendor Homepage: http://w-cms.org/ Software Link: - Version: 2.0.1 Tested on: Windows 7 + PHP 5.2.6 --- Vuln Code :...

w-CMS 2.0.1 - Remote Code Execution

w-CMS 2.0.1 - Remote Code Execution Exploit Title: w-CMS 2.0.1 Remote Code Execution Vulnerability Google Dork: intext:"Powered by w-CMS" Date: 15/08/2013 Exploit Author: ICheerNo0M - http://icheernoom.blogspot.com/ Vendor Homepage: http://w-cms.org/ Software Link: - Version: 2.0.1 Tested on:...

w-CMS 2.0.1 Remote Code Execution

Exploit Title: w-CMS 2.0.1 Remote Code Execution Vulnerability Google Dork: intext:"Powered by w-CMS" Date: 15/08/2013 Exploit Author: ICheerNo0M - http://icheernoom.blogspot.com/ Vendor Homepage: http://w-cms.org/ Software Link: - Version: 2.0.1 Tested on: Windows 7 + PHP 5.2.6 --- Vuln Code :...

ACal 2.2.6 Local File Inclusion

Exploit Title: ACal 2.2.6 Local File Inclusion Vulneberality Google Dork: - Date: 15/08/2013 Exploit Author: ICheerNo0M - http://icheernoom.blogspot.com/ Vendor Homepage: http://acalproj.sourceforge.net/ Software Link: http://prdownloads.sourceforge.net/acalproj/ACal-2.2.6.tar.gz?download Version...

AContent 1.3 Local File Inclusion

Exploit for php platform in category web applications Exploit Title: AContent 1.3 Local File Inclusion Date: 21-03-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://atutor.ca/acontent/ Software Link: https://sourceforge.net/projects/acontent/files/AContent-1.3.tar.gz/download Category:...

AContent 1.3 Local File Inclusion

Exploit Title: AContent 1.3 Local File Inclusion Date: 21-03-2013 Author: DaOne Vendor Homepage: http://atutor.ca/acontent/ Software Link: https://sourceforge.net/projects/acontent/files/AContent-1.3.tar.gz/download Category: webapps/php Version: 1.3 Tested on: Apache/2.2.8Win32 PHP/5.2.6 Exploit...

Slash CMS - Multiple Vulnerabilities

Exploit Title: Slash CMS Multiple Vulnerabilities Date: 21-03-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://www.slash-cms.com/ Software Link: http://sourceforge.net/projects/slashcms/ Category: webapps/php Google Dork: "N/A" Tested on: Apache/2.2.8Win32 PHP/5.2.6 File Upload: Upload...

Radius Manager 3.9.0 SQL Injection

Exploit Title: Radius Manager V3.9.0 Sql Injection Date: 16-10-2011 Author: Mehdi Boukazoula Software Link: http://www.dmasoftlab.com Version: v 3.9.0 Tested on: v 3.9.0 with Postgresql, PHP 5.2.6, Apache 2.2.8, Description : In the page of "http://127.0.0.1/admin.php" the parameter "cont" is not...

Mandriva Linux Security Advisory : php (MDVSA-2009:247)

Multiple vulnerabilities was discovered and corrected in php : The dbareplace function in PHP 5.2.6 and 4.x allows context-dependent attackers to cause a denial of service file truncation via a key with the NULL byte. NOTE: this might only be a vulnerability in limited circumstances in which the...

php safe mode bypass all-vulnerability warning-the black bar safety net

Sources:vul. kr PHP safe mode bypass from 4. x to 5. x all. Functions: mbsendmail curlinit imapopen mail ioncubereadfile posixgetpwuid errorlog extensionloaded copy procopen A php code safe-mode-bypass.php for you: Some New Virus: PHP 5.2.4 ionCube extension safemode and disablefunctions...

Design/Logic Flaw

The dbareplace function in PHP 5.2.6 and 4.x allows context-dependent attackers to cause a denial of service file truncation via a key with the NULL byte. NOTE: this might only be a vulnerability in limited circumstances in which the attacker can modify or add database entries but does not have...

Mandriva Update for php MDVSA-2008:128 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDVSA-2008:128 php Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Heap overflow

Heap-based buffer overflow in ext/mbstring/libmbfl/filters/mbfilterhtmlent.c in the mbstring extension in PHP 4.3.0 through 5.2.6 allows context-dependent attackers to execute arbitrary code via a crafted string containing an HTML entity, which is not properly handled during Unicode conversion,...

CVE-2008-5658

Directory traversal vulnerability in the ZipArchive::extractTo function in PHP 5.2.6 and earlier allows context-dependent attackers to write arbitrary files via a ZIP file with a file whose name contains .. dot dot sequences...

CVE-2008-5658

Directory traversal vulnerability in the ZipArchive::extractTo function in PHP 5.2.6 and earlier allows context-dependent attackers to write arbitrary files via a ZIP file with a file whose name contains .. dot dot sequences...

SecurityReason: PHP 5.2.6 SAPI php_getuid() overload

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SecurityReason.com : PHP 5.2.6 SAPI phpgetuid overload Author: Maksymilian Arciemowicz securityreason.com Date: - - Written: 20.11.2008 - - Public: 05.12.2008 SecurityReason Research SecurityAlert Id: 59 SecurityRisk: High Affected Software: PHP 5.2.6...

SecurityReason : PHP 5.2.6 dba_replace() destroying file

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SecurityReason.com PHP 5.2.6 dbareplace destroying file Author: Maksymilian Arciemowicz http://securityreason.com Date: - - Written: 10.11.2008 - - Public: 28.11.2008 SecurityReason Research SecurityAlert Id: 58 SecurityRisk: Medium Affected Software:...

php526-destroy.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SecurityReason.com PHP 5.2.6 dbareplace destroying file Author: Maksymilian Arciemowicz http://securityreason.com Date: - - Written: 10.11.2008 - - Public: 28.11.2008 SecurityReason Research SecurityAlert Id: 58 SecurityRisk: Medium Affected Software:...