CVE-2006-2860

CVE-2006-2860 is a PHP remote file inclusion vulnerability in Webspotblogging 3.0.1. An attacker can trigger arbitrary PHP code execution by supplying a URL in the path parameter to one of four files: inc/logincheck.inc.php, inc/adminheader.inc.php, inc/global.php, or inc/mainheader.inc.php. The ...

[Kil13r-SA-20060606] ESTsoft InternetDISK Arbitary Code Execution Vulnerability

Title: Kil13r-SA-20060606 ESTsoft InternetDISK Arbitary Code Execution Vulnerability Author: Kil13r - http://www.kil13r.info/ Local / Remote: Remote Timeline: 2006/04/19 - Discovery 2006/04/19 - Vendor notification 2006/04/20 - Vendor response 2006/04/20 - Vendor patch release 2006/05/10 - Vendor...

PT-2006-3760 · Squirrelmail +1 · Squirrelmail +1

Name of the Vulnerable Software and Affected Versions: SquirrelMail versions 1.4.6 and earlier Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the plugins array parameter, under specific conditions where register globals is enabled and magic quotes gpc is...

Remote file inclusion

PHP remote file inclusion vulnerability in common-menu.php in Cameron McKay Informium 0.12.0 allows remote attackers to execute arbitrary PHP code via a URL in the CONFlocalpath parameter...

CVE-2006-2811

Multiple PHP remote file inclusion vulnerabilities in Cantico Ovidentia 5.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the babInstallPath parameter in 1 index.php, 2 topman.php, 3 approb.php, 4 vacadmb.php, 5 vacadma.php, 6 vacadm.php, 7 statart.php, 8 search.php, 9...

CyBoards PHP Lite 1.211.25 - Common.php Remote File Inclusion

CyBoards PHP Lite 1.211.25 - Common.php Remote File Inclusion source: https://www.securityfocus.com/bid/18272/info CyBoards PHP Lite is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it...

Bookmark4U 2.0 - '/inc/dbase.php?env[include_prefix]' Remote File Inclusion

source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containin...

Bookmark4U 2.0 - '/inc/common.php?env[include_prefix]' Remote File Inclusion

source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containin...

[SA20438] BlueShoes Framework Multiple File Inclusion Vulnerabilities

---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...

Bookmark4U 2.0 - incfunction.php?env[include_prefix] Remote File Inclusion

Bookmark4U 2.0 - incfunction.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...

Bookmark4U 2.0 - inccommon.php?env[include_prefix] Remote File Inclusion

Bookmark4U 2.0 - inccommon.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...

Bookmark4U 2.0 - '/inc/function.php?env[include_prefix]' Remote File Inclusion

source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containin...

Bookmark4U 2.0 - incdbase.php?env[include_prefix] Remote File Inclusion

Bookmark4U 2.0 - incdbase.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...

CyBoards PHP Lite 1.21/1.25 - 'Common.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/18272/info CyBoards PHP Lite is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the webserver process. This may allow the...

Bookmark4U 2.0 - incconfig.php?env[include_prefix] Remote File Inclusion

Bookmark4U 2.0 - incconfig.php?envincludeprefix Remote File Inclusion source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...

Bookmark4U 2.0 - '/inc/config.php?env[include_prefix]' Remote File Inclusion

source: https://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containin...

dotWidget for articles 2.0 - admineditconfig.php Multiple Remote File Inclusions

dotWidget for articles 2.0 - admineditconfig.php Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize...

dotWidget for articles 2.0 - 'showarticle.php?file_path' Remote File Inclusion

source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote fil...

dotWidget for articles 2.0 - '/admin/articles.php' Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote fil...

dotWidget for articles 2.0 - adminarticles.php Multiple Remote File Inclusions

dotWidget for articles 2.0 - adminarticles.php Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18479/info dotWidget for Articles is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize...