CVE-2006-2608

artmedic newsletter 4.1 and possibly other versions, when registerglobals is enabled, allows remote attackers to modify arbitrary files and execute arbitrary PHP code via the logfile parameter in a direct request to log.php, which causes the $logfile variable to be redefined to an...

Information disclosure

artmedic newsletter 4.1.2 and possibly other versions, when registerglobals is enabled, allows remote attackers to modify arbitrary files and execute arbitrary PHP code via the email parameter to newsletterlog.php. NOTE: the provenance of this information is unknown; the details are obtained sole...

CVE-2006-2608

artmedic newsletter 4.1 and possibly other versions, when registerglobals is enabled, allows remote attackers to modify arbitrary files and execute arbitrary PHP code via the logfile parameter in a direct request to log.php, which causes the $logfile variable to be redefined to an...

Drupal-4.7.txt

!/usr/bin/php -q -d shortopentag=on '; / then: http://target/path/files/attach.php.pps?cmd=ls%20-la also, I noticed that from an admin account you can upload .php3 or .php5 files / if $argc6 echo "Usage: php ".$argv0." host path user pass cmd OPTIONS\r\n"; echo "host: target server...

DoceboLms 2.0.x - Lang Multiple Remote File Inclusions

DoceboLms 2.0.x - Lang Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/18110/info DoceboLMS is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit...

Design/Logic Flaw

Unspecified vulnerability in DSChat 1.0 allows remote attackers to execute arbitrary PHP code via the Nickname field, which is not sanitized before creating a file in a user directory. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informatio...

CVE-2006-2592

Unspecified vulnerability in DSChat 1.0 allows remote attackers to execute arbitrary PHP code via the Nickname field, which is not sanitized before creating a file in a user directory. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informatio...

CVE-2006-2570

PHP remote file inclusion vulnerability in CaLogic Calendars 1.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS"CLPath" parameter to 1 reconfig.php and 2 srxclr.php. NOTE: this might be due to a globals overwrite issue...

Remote Code Execution in artmedic Newsletter 4.1 [log.php]

I found a bug in artmedic Newsletter 4.1 proably even in newer versions which lets an attacker run arbitrary php-code and bypass the password protection. The reason for this is mistake in design. log.php: ?php $time = time; $date = date"d.m.Y, H:i:s"; $remote = getenv"REMOTEADDR"; $ip =...

XOOPS xoopsConfig Parameter Variable Overwrite Local File Inclusion

The version of XOOPS installed on the remote host allows an unauthenticated attacker to skip processing of the application's 'include/common.php' script and thereby to gain control of the variables '$xoopsConfiglanguage' and '$xoopsConfigthemeset', which are used by various scripts to include PHP...

XOOPS < 2.0.9.4 include/common.php nocommon Parameter Local File Inclusion

Binary data 3629.prm...

Fusion News v.1.0 (fil_config) Remote File Inclusion Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; Exploit coded by: X0r1 Bug found by: X0r1 release: 21.05.06 vulnerable code in sources\post.php at lines 32-35: ---------------------------------------------------------------------------------- ... global $VARS, $TEMPLATE, $fillan...

CVE-2006-2479

The Update functionality in Bitrix Site Manager 4.1.x does not verify the authenticity of downloaded updates, which allows remote attackers to obtain sensitive information and ultimately execute arbitrary PHP code via DNS cache poisoning that redirects the user to a malicious site...

[SA20156] ScozNews &quot;CONFIG[main_path]&quot; File Inclusion Vulnerabilities

TITLE: ScozNews "CONFIGmainpath" File Inclusion Vulnerabilities SECUNIA ADVISORY ID: SA20156 VERIFY ADVISORY: http://secunia.com/advisories/20156/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: ScozNews 1.x http://secunia.com/product/10016/ DESCRIPTION: Kacper has...

Newsportal: code injection vulnerability

Hello, there is a code injection vulnerability in NewsPortal that could give everyone the ability to execute php code on the webserver where newsportal is installed. This bug should only occur if "registerglobals=on" is set in the php.ini. To remove the problem: - install the recent version:...

Squirrelcart cart_content.php cart_isp_root Parameter Remote File Inclusion

The remote host is running Squirrelcart, a shopping cart program written in PHP. The version of Squirrelcart installed on the remote host fails to sanitize user-supplied input to the 'cartisproot' parameter of the 'cartcontent.php' script before using it to include PHP code. Provided PHP's...

[SA20115] Php Blue Dragon CMS &quot;vsDragonRootPath&quot; File Inclusion

TITLE: Php Blue Dragon CMS "vsDragonRootPath" File Inclusion SECUNIA ADVISORY ID: SA20115 VERIFY ADVISORY: http://secunia.com/advisories/20115/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Php Blue Dragon CMS 2.x http://secunia.com/product/9942/ DESCRIPTION: Kacper...

[SA20087] PopPhoto &quot;cfg[popphoto_base_path]&quot; File Inclusion Vulnerability

TITLE: PopPhoto "cfgpopphotobasepath" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA20087 VERIFY ADVISORY: http://secunia.com/advisories/20087/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: PopPhoto 3.x http://secunia.com/product/9926/ DESCRIPTION: VietMafia h...

Pixaria PopPhoto 3.5.4 - CFG[popphoto_base_path] Remote File Inclusion

Pixaria PopPhoto 3.5.4 - CFGpopphotobasepath Remote File Inclusion source: https://www.securityfocus.com/bid/17970/info Pixaria PopPhoto is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can...

Pixaria PopPhoto 3.5.4 - &#039;CFG[popphoto_base_path]&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/17970/info Pixaria PopPhoto is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...