Advanced Guestbook 2.3.1 - admin.php Remote File Inclusion

Advanced Guestbook 2.3.1 - admin.php Remote File Inclusion source: https://www.securityfocus.com/bid/20902/info Advanced GuestBook for phpBB is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue t...

Advanced Guestbook 2.3.1 - 'admin.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/20902/info Advanced GuestBook for phpBB is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP...

CVE-2006-5636

PHP remote file inclusion vulnerability in common.php in Simple Website Software SWS 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SWSDIR parameter...

P-Book <= 1.17 (pb_lang) Remote File Inclusion Vulnerabilities

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV56$2006 ------------------------------------------------------------------------------ ECHOADV56$2006 P-Book = 1.17 pblang Remote File Inclusion...

CVE-2006-5623

PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool EE Tool 0.4-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cgipath parameter...

CVE-2006-5621

PHP remote file inclusion vulnerability in end.php in askrave 0.9 PR, and other versions before 0.9b, allows remote attackers to execute arbitrary PHP code via a URL in the footfile parameter...

CVE-2006-5623

PHP remote file inclusion vulnerability in ip.inc.php in Electronic Engineering Tool EE Tool 0.4-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cgipath parameter...

CVE-2006-5610

PHP remote file inclusion vulnerability in player/includes/common.php in Teake Nutma Foing, as modified in Fully Modded phpBB phpbbfm 2021.4.40, allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

Actionpoll 1.1.1 - '/db/DataReaderWriter.php?CONFIG_DB' Remote File Inclusion

source: https://www.securityfocus.com/bid/20788/info Actionpoll is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code a...

Joomla extended_registration组件远程文件包含漏洞

extendedregistration是Mambo（也被称为Joomla）中提供扩展注册支持的组件。 extendedregistration组件在处理用户请求时存在输入验证漏洞，远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 extendedregistration组件没有正确地验证mosConfigabsolutepath参数数据的输入，允许攻击者通过包含本地或外部资源任意文件导致执行任意PHP代码。admin.extendedregistration.php文件中漏洞代码如下： ?php require"../configuration.php"; functi...

Actionpoll 1.1.1 - '/db/PollDB.php?CONFIG_DATAREADERWRITER' Remote File Inclusion

source: https://www.securityfocus.com/bid/20788/info Actionpoll is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code a...

Actionpoll 1.1.1 - dbDataReaderWriter.php?CONFIG_DB Remote File Inclusion

Actionpoll 1.1.1 - dbDataReaderWriter.php?CONFIGDB Remote File Inclusion source: https://www.securityfocus.com/bid/20788/info Actionpoll is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these...

MySource CMS <= 2.16.2 (init_mysource.php) Remote File Include Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' | \\ | \\ | \ . . |\ \ \ /\ \ / /| || | | | | \ | \ Y / | || | | \ | \ \ / | || | |/ // / / ||| \ | / / \ / \ |\ /\ / / \ / \ | | | | / /\ \ / \ / \ | | | | / | / Y \ || / /| /| /...

Actionpoll 1.1.1 - dbPollDB.php?CONFIG_DATAREADERWRITER Remote File Inclusion

Actionpoll 1.1.1 - dbPollDB.php?CONFIGDATAREADERWRITER Remote File Inclusion source: https://www.securityfocus.com/bid/20788/info Actionpoll is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit the...

ArticleBeach Script <= 2.0 Remote File Inclusion Vulnerability

------------------------------------------------------------------------------ ArticleBeach Script = 2.0 page Remote File Inclusion Vulnerability ------------------------------------------------------------------------------ Author : Zeni Susanto a.k.a Bithedz Date Found : October, 22th 2006...

PLS-Bannieres 1.21 (bannieres.php) File Include

PLS-Bannieres 1.21 bannieres.php File Include Source Code: ftp://ftp1.comscripts.com/PHP/1959ban01-01.zip Vulnerable Code: modules/bannieres/bannieres.php In Line 13 : include "$chemin/includes/connexion.php" ; Exploit :...

Light Blog Multiple Vulnerabilities Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "\r\n"; echo "Light Blog Multiple Vulnerabilities Exploit\r\n"; echo "by BlackHawk [email protected]\r\n"; echo "Thanks to rgod for the php code and Marty for the Love\r\n\r\n"; if $argc4 echo "Usage: php ".$argv0."...

Segue CMS themesettings.inc.php themesdir Parameter Remote File Inclusion

The remote web server is running Segue CMS, an open source content management system tailored for educational institutions. The version of Segue CMS installed on the remote host fails to sanitize input to the 'themesdir' parameter before using it in the 'themes/program/themesettings.inc.php' scri...

CVE-2006-5594

PHP remote file inclusion vulnerability in University of British Columbia iPeer 2.0, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: it is possible that this issue is related to CakePHP...

PLS-Bannieres 1.21 - 'Bannieres.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/20772/info PLS-Bannieres is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...