MyBloggie 2.1.x Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18241/info MyBloggie is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include...

JAF CMS 4.0.0 RC2 - 'website' and 'main_dir' Parameters Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/28476/info JAF CMS is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...

Community CMS 0.1 'include.php' Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30275/info Community CMS is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this issue to execute malicious PHP code in the context of the...

ListMessenger 0.9.3 LM_Path Parameter Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19014/info ListMessenger is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an...

CyBoards PHP Lite 1.21/1.25 Common.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18272/info CyBoards PHP Lite is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the...

SyntaxCMS <= 1.3 (fckeditor) Arbitrary File Upload Exploit

No description provided by source. ?php / -------------------------------------------------------------- Syntax CMS = 1.3 fckeditor Arbitrary File Upload Exploit -------------------------------------------------------------- Gr33ts t0 : EgiX, ThE GeNeRal L0s3r , Houssamix ,Str0ke == special THank...

PEEL 1.0 b Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6496/info PEEL is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. An attacker may exploit this by supplying a path to a maliciously created file, located on an...

I-RATER Platinum Common.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17623/info I-RATER Platinum is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an...

Bookmark4U 2.0 inc/config.php env[include_prefix] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...

Bookmark4U 2.0 inc/function.php env[include_prefix] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...

Bookmark4U 2.0 inc/dbase.php env[include_prefix] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/18281/info Bookmark4U is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...

Gcards 1.13 Addnews.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20461/info gcards is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker can exploit this issue to have malicious PHP code execute in the context of...

WordPress Think Responsive Themes 1.0 - Arbitrary File Upload Vulnerability

No description provided by source. . . . \ \ | / \ \ \ | || / \ / / \ / |/ \ / | / \ / / /| | |/ \ \ \ // \ / / | \ /\ / | \ \ \ / \ //\ |\ | /\ // | /|\ / / / / / / / Exploit Title: WordPress Think Responsive Themes Arbitrary File Upload Vulnerability Author: Byakuya Date:...

Plogger Beta 2 Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15992/info Plogger is prone to a remote file include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the Web server...

Tolva 0.1 Usermods.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16000/info Tolva is prone to a remote file-include vulnerability. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the webserver process...

HiveMail 1.2.2/1.3 addressbook.update.php contactgroupid Variable Arbitrary PHP Command Execution

No description provided by source. source: http://www.securityfocus.com/bid/16591/info HiveMail is prone to multiple vulnerabilities. These vulnerabilities may allow the execution of arbitrary PHP code, cross-site scripting attacks, and SQL injection. The PHP code-execution issues are the result ...

Tiki Wiki CMS Groupware <= 8.3 "unserialize()" PHP Code Execution

Tiki Wiki CMS Groupware 'unserialize'多个远程PHP代码执行漏洞 漏洞类型： 设计缺陷 漏洞成因： Tiki Wiki CMS Groupware v6.9、9.3之前版本存在安全漏洞，某些脚本对用户控制的输入使用了 "unserialize"操作，攻击者可利用此漏洞在受影响应用中注入和执行任意PHP代码。 修补建议： 更新到最新版本 http://info.tiki.org/article210-Tiki-10-0-is-here ?php /...

Meganoide's News 1.1.1 Include.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22589/info Meganoide's news is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code in the context of...

VWar 1.5 challenge.php vwar_root Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...

Open Digital Assets Repository System 1.0.2 Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29881/info Open Digital Assets Repository System ODARS is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit this issue to execute malicious...