Kayako SupportSuite syncml/index.php Direct Request Remote Information Disclosure

The version of Kayako SupportSuite installed on the remote host returns PHP's '$SERVER' superglobal variable in response to a request for Kayako's 'syncml/index.php' page. This variable contains information about the remote web server, some of which might be sensitive. %NASLMINLEVEL 70300 C Tenab...

YaBB SE Cookie Authentication Bypass

The remote host is running YaBB SE, a web-based forum written in PHP. The version of YaBB SE installed on the remote host allows use of a cookie to bypass authentication. A remote attacker can leverage this issue using a specially crafted value for the cookie to gain access as any user, including...

Loudblog loudblog/inc/parse_old.php template Parameter Arbitrary Remote Code Execution

The remote host is running Loudblog, a PHP application for publishing podcasts and similar media files. The version of Loudblog on the remote host fails to sanitize input to the 'template' parameter of the 'loudblog/inc/parseold.php' script before using it in an 'eval' statement to evaluate PHP...

MODx CMS 0.9.6.1 - Multiple Vulnerabilities

MODx CMS 0.9.6.1 - Multiple Vulnerabilities WwW.BugReport.ir AmnPardaz Security Research Team Title: MODx CMS Vulnerabilities Vendor: http://modxcms.com Bugs: Source code disclosure, local file inclusion Vulnerable Version: 0.9.6.1 prior versions also may be affected Exploitation: Remote with...

MODx CMS 0.9.6.1 - Multiple Vulnerabilities

WwW.BugReport.ir AmnPardaz Security Research Team Title: MODx CMS Vulnerabilities Vendor: http://modxcms.com Bugs: Source code disclosure, local file inclusion Vulnerable Version: 0.9.6.1 prior versions also may be affected Exploitation: Remote with browser Fix Available: No! - Description: quote...

MODx CMS 0.9.6.1 Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ================================================ MODx CMS 0.9.6.1 Multiple Remote Vulnerabilities ================================================ AmnPardaz Security Research Team Title: MODx CMS Vulnerabilities Vendor: http://modxcms.com...

CuteNews search.php files_arch Array Arbitrary File Access

The version of CuteNews on the remote host fails to initialize the 'filesarch' array before populating it with a list of files to search in the 'search.php' script. Regardless of PHP's 'registerglobals' setting, an unauthenticated attacker can leverage this issue to determine the existence of...

RunCMS include/common.php xoopsOption Parameter Local File Inclusion

Binary data 4295.prm...

smf-blind.txt

SMF is a very hardened php application. If anyone wants an example of some interesting PHP security SMF is a good place to look. Even after being able to injection SQL I had to take another step and bypass some difficult filters found in the dbquery function. Ultimately i was able to do so. This...

Joomla! CMS com_search Component 'searchword' Parameter RCE

The version of Joomla! running on the remote host is affected by a remote code execution vulnerability within the comsearch/views/search/tmpl/defaultresults.php script due to improper sanitization of user-supplied input to the 'searchword' parameter before passing it to the eval function. An...

VHCS PHPSESSID Cookie Session Fixation

The remote host is running VHCS, a control panel for hosting providers. The GUI portion of the version of VHCS installed on the remote host accepts session identifiers from GET and likely POST variables, which makes it susceptible to a session fixation attack. An attacker may be able to exploit...

adv83-K-159-2007.txt

ECHOADV83$2007 ----------------------------------------------------------------------------------------- ECHOADV83$2007 PhpHostBot = 1.06 svrrootscript Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...

Prototype of an PHP Application 0.1 - identident.inc.php?path_inc Remote File Inclusion

Prototype of an PHP Application 0.1 - identident.inc.php?pathinc Remote File Inclusion source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the...

Prototype of an PHP Application 0.1 - identloginmodif.php?path_inc Remote File Inclusion

Prototype of an PHP Application 0.1 - identloginmodif.php?pathinc Remote File Inclusion source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the...

Prototype of an PHP Application 0.1 - '/ident/disconnect.php?path_inc' Remote File Inclusion

source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to execute an arbitrary remote file...

Prototype of an PHP Application 0.1 - '/ident/identification.php?path_inc' Remote File Inclusion

source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to execute an arbitrary remote file...

Prototype of an PHP Application 0.1 - '/ident/loginmodif.php?path_inc' Remote File Inclusion

source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to execute an arbitrary remote file...

Prototype of an PHP Application 0.1 - index.php?path_inc Remote File Inclusion

Prototype of an PHP Application 0.1 - index.php?pathinc Remote File Inclusion source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the applicatio...

Prototype of an PHP Application 0.1 - 'common.inc.php?path_inc' Remote File Inclusion

source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to execute an arbitrary remote file...

Prototype of an PHP Application 0.1 - identindex.php?path_inc Remote File Inclusion

Prototype of an PHP Application 0.1 - identindex.php?pathinc Remote File Inclusion source: https://www.securityfocus.com/bid/24266/info 'Prototype of an PHP application' is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input to the...