CVE-2010-4918

CVE-2010-4918 affects the Joomla! extension iJoomla Magazine (com_magazine) version 3.0.1, where a PHP Remote File Inclusion (RFI) vulnerability in magazine.functions.php allows an attacker to execute arbitrary PHP code via the config parameter in a URL. The underlying issue is an unchecked confi...

Jcow Social Networking Script 4.2 <= 5.2 Arbitrary Code Execution

Exploit for php platform in category web applications Exploit Title: Jcow CMS 4.x:4.2 Software Link: http://sourceforge.net/projects/jcow/files/jcow4/jcow.4.2.1.zip/download Version: 4.x:4.2 5.6.7.8:34441 at Sat Jun 04 00:00:44 +0000 2011 require 'msf/core' class Metasploit3 'JCow CMS Remote...

DVBBS 2.0 index_0_0.php 任意php代码执行漏洞

No description provided by source...

Chyrp 2.x swfupload Extension - upload_handler.php Arbitrary File Upload Arbitrary PHP Code Execution

Chyrp 2.x swfupload Extension - uploadhandler.php Arbitrary File Upload Arbitrary PHP Code Execution source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, an...

Chyrp 2.x swfupload Extension - &#039;upload_handler.php&#039; Arbitrary File Upload / Arbitrary PHP Code Execution

source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal vulnerability. An attacker may leverage these issues to execute arbitrary...

Code injection

uploadhandler.php in the swfupload extension in Chyrp 2.0 and earlier relies on client-side JavaScript code to restrict the file extensions of uploaded files, which allows remote authenticated users to upload a .php file, and consequently execute arbitrary PHP code, via a writepost action to the...

Ecmall全版本本地文件包含漏洞

简要描述： Ecmall的默认处理中犯了一个严重的错误，绕开了系统中的保护逻辑从而导致可以包含任意文件以php代码执行 详细说明： eccore/ecmall.php内 if !getmagicquotesgpc $GET = addslashesdeep$GET; $POST = addslashesdeep$POST; $COOKIE= addslashesdeep$COOKIE; / 请求转发 / $defaultapp = $config'defaultapp' ? $config'defaultapp' : 'default'; $defaultact =...

P.A.S. (php web-shell)

P.A.S. v.3.0.x Возможности : - Авторизация по кукам. - Шифрование шелла по вашему паролю сразу при скачивании. - Файловый менеджер : групповое удаление, перемещение, копирование, скачка и загрузка файлов и директорий. переименование и создание файлов и директорий. правка, просмотр, изменении...

vBulletin 4.1.2 search.php SQL Injection

Requirements require 'msf/core' Class declaration class Metasploit3 'vBulletin 4 %q vBulletin versions 4 Exploit Only 'James Bercegay http://www.gulftech.org/ ' , 'License' = MSFLICENSE, 'References' = 'BID', '47281' , , 'Privileged' = false, 'Platform' = 'php', 'Arch' = ARCHPHP, 'Targets' =...

CVE-2010-2789

PHP remote file inclusion vulnerability in MediaWikiParserTest.php in MediaWiki 1.16 beta, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via unspecified vectors...

PHP code execution vulnerability references summary-vulnerability warning-the black bar safety net

A code execution function In PHP you can execute the Code of the function. Such as eval , assert , theand system and exec and shellexec and passthru and escapeshellcmd and pcntlexec , etc. demo code 1.1: The second file contains the code injection The file containing the function in the specific...

PHP_5.3.x<5.3.3_phar_stream_flush代码执行漏洞

No description provided by source...

WordPress BackWPup Plugin < 1.7.1 'wpabs' Parameter Remote PHP Code Execution Vulnerability - Active Check

WordPress BackWPup Plugin is prone to a remote PHP code execution vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Gentoo Security Advisory GLSA 201006-13 (smarty)

The remote host is missing updates announced in advisory GLSA 201006-13. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Vtiger CRM <= 5.0.4 Multiple Vulnerabilities - Active Check

Vtiger CRM is prone to multiple input validation vulnerabilities SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vtiger:vtigercrm...

CVE-2011-0771

The Janrain Engage formerly RPX module 6.x-1.3 for Drupal does not validate the file for a profile image, which allows remote authenticated users to conduct cross-site scripting XSS attacks and possibly execute arbitrary PHP code by causing a crafted avatar to be downloaded from an external login...

Simploo CMS Community Edition - Remote PHP Code Execution Issue

Details ============= Product: Simploo CMS Community Edition Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.simploo.de/ Advisory-Status: published Credits ============= Discovered by: David Vieira-Kurz of MajorSecurity Affected Products: ============= Simploo CMS 1.7.1 and...

Simploo CMS 1.7.1 PHP Code Execution

Exploit for php platform in category web applications Simploo CMS Community Edition - Remote PHP Code Execution Issue Details ============= Product: Simploo CMS Community Edition Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.simploo.de/ Advisory-Status: published Credits...

Simploo CMS 1.7.1 - PHP Code Execution

Simploo CMS 1.7.1 - PHP Code Execution Simploo CMS Community Edition - Remote PHP Code Execution Issue Details ============= Product: Simploo CMS Community Edition Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.simploo.de/ Advisory-Status: published Credits =============...

JE Messenger 1.0 Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications ==================================================== JE Messenger 1.0 Arbitrary File Upload Vulnerability ==================================================== JE Messenger 1.0 Arbitrary File Upload Vulnerability Name JE Messenger Vendor...