2271 matches found
Ovidentia 5.6.x5.8 - vacadm.php?babInstallPath Remote File Inclusion
Ovidentia 5.6.x5.8 - vacadm.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues...
MyBloggie 2.1.x - MyBloggie_Root_Path Remote File Inclusion
MyBloggie 2.1.x - MyBloggieRootPath Remote File Inclusion source: https://www.securityfocus.com/bid/19449/info MyBloggie is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary...
Ovidentia 5.6.x5.8 - vacadmb.php?babInstallPath Remote File Inclusion
Ovidentia 5.6.x5.8 - vacadmb.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issue...
Ovidentia 5.6.x5.8 - statart.php?babInstallPath Remote File Inclusion
Ovidentia 5.6.x5.8 - statart.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issue...
Ovidentia 5.6.x5.8 - options.php?babInstallPath Remote File Inclusion
Ovidentia 5.6.x5.8 - options.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issue...
Ovidentia 5.6.x/5.8 - 'vacadma.php?babInstallPath' Remote File Inclusion
source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
Ovidentia 5.6.x/5.8 - 'vacadmb.php?babInstallPath' Remote File Inclusion
source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
Ovidentia 5.6.x/5.8 - 'approb.php?babInstallPath' Remote File Inclusion
source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
Ovidentia 5.6.x/5.8 - 'statart.php?babInstallPath' Remote File Inclusion
source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
MyBloggie 2.1.x - 'MyBloggie_Root_Path' Remote File Inclusion
source: https://www.securityfocus.com/bid/19449/info MyBloggie is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and execute it in...
Ovidentia 5.6.x5.8 - vacadma.php?babInstallPath Remote File Inclusion
Ovidentia 5.6.x5.8 - vacadma.php?babInstallPath Remote File Inclusion source: https://www.securityfocus.com/bid/18232/info Ovidentia is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issue...
CVE-2006-2747
Directory traversal vulnerability in index.php in PhpMyDesktop|arcade 1.0 FINAL allows remote attackers to read arbitrary files or execute PHP code via a .. dot dot sequence and trailing null %00 byte in the subsite parameter in a showsubsite todo...
CVE-2006-2747
Directory traversal vulnerability in index.php in PhpMyDesktop|arcade 1.0 FINAL allows remote attackers to read arbitrary files or execute PHP code via a .. dot dot sequence and trailing null %00 byte in the subsite parameter in a showsubsite todo...
osTicket 1.x - 'Open_form.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/18190/info osTicket is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PH...
Code injection
Direct static code injection vulnerability in WordPress 2.0.2 and earlier allows remote attackers to execute arbitrary commands by inserting a carriage return and PHP code when updating a profile, which is appended after a special comment sequence into files in 1 wp-content/cache/userlogins/ 2...
CVE-2006-2667
Direct static code injection vulnerability in WordPress 2.0.2 and earlier allows remote attackers to execute arbitrary commands by inserting a carriage return and PHP code when updating a profile, which is appended after a special comment sequence into files in 1 wp-content/cache/userlogins/ 2...
DEBIAN-CVE-2006-2667
Direct static code injection vulnerability in WordPress 2.0.2 and earlier allows remote attackers to execute arbitrary commands by inserting a carriage return and PHP code when updating a profile, which is appended after a special comment sequence into files in 1 wp-content/cache/userlogins/ 2...
CVE-2006-2667
Direct static code injection vulnerability in WordPress 2.0.2 and earlier allows remote attackers to execute arbitrary commands by inserting a carriage return and PHP code when updating a profile, which is appended after a special comment sequence into files in 1 wp-content/cache/userlogins/ 2...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Docebo LMS 2.05 allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to 1 modules/credits/business.php, 2 modules/credits/credits.php, or 3 modules/credits/help.php...
CVE-2006-2667
Direct static code injection vulnerability in WordPress 2.0.2 and earlier allows remote attackers to execute arbitrary commands by inserting a carriage return and PHP code when updating a profile, which is appended after a special comment sequence into files in 1 wp-content/cache/userlogins/ 2...