7213 matches found
CVE-2006-4372
PHP remote file inclusion vulnerability in admin.lurmconstructor.php in the Lurm Constructor component comlurmconstructor 0.6b and earlier for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the lmabsolutepath parameter...
CVE-2006-4373
PHP remote file inclusion vulnerability in modules/visitors2/include/config.inc.php in pSlash 0.70 allows remote attackers to execute arbitrary PHP code via a URL in the lvcincludedir parameter...
BigACE 1.8.2 - admin.cmd.php Remote File Inclusion
BigACE 1.8.2 - admin.cmd.php Remote File Inclusion source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP...
Joomla! Mambo Component Comprofiler 1.0 - class.php Remote File Inclusion
Joomla! Mambo Component Comprofiler 1.0 - class.php Remote File Inclusion source: https://www.securityfocus.com/bid/19725/info The Mambo and Joomla comcomprofiler component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can...
Jupiter CMS 1.1.5 - index.php Remote File Inclusion
Jupiter CMS 1.1.5 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/19721/info Jupiter CMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files...
BigACE 1.8.2 - download.cmd.php Remote File Inclusion
BigACE 1.8.2 - download.cmd.php Remote File Inclusion source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PH...
BigACE 1.8.2 - upload_form.php Remote File Inclusion
BigACE 1.8.2 - uploadform.php Remote File Inclusion source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP...
Jetbox CMS 2.1 - Search_function.php Remote File Inclusion
Jetbox CMS 2.1 - Searchfunction.php Remote File Inclusion source: https://www.securityfocus.com/bid/19722/info Jetbox CMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote fi...
BigACE 1.8.2 - item_main.php Remote File Inclusion
BigACE 1.8.2 - itemmain.php Remote File Inclusion source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP co...
Alstrasoft Video Share Enterprise 4.x - 'MyajaxPHP.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19724/info AlstraSoft Video Share Enterprise is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code an...
BigACE 1.8.2 - 'item_main.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver...
BigACE 1.8.2 - 'upload_form.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute it in the context of the webserver...
Jetbox CMS 2.1 - 'Search_function.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19722/info Jetbox CMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...
Jupiter CMS 1.1.5 - 'index.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19721/info Jupiter CMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the...
phpCOIN Multiple Script _CCFG Parameter Remote File Inclusion
The remote host is running phpCOIN, a software package for web-hosting resellers to handle clients, orders, helpdesk queries, and the like. The version of phpCOIN installed on the remote host fails to sanitize input to the 'CCFG' array parameter before using it in several scripts to include PHP...
CVE-2006-4348
PHP remote file inclusion vulnerability in config.kochsuite.php in the Kochsuite comkochsuite 0.9.4 component for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
Wikepage Opus 10 <= 2006.2a (lng) Remote Command Execution Exploit
Exploit for unknown platform in category web applications ================================================================== Wikepage Opus 10 "; $socket = IO::Socket::INET-newProto="tcp", PeerAddr="$server", PeerPort="http80" || die "- Cannot not connect to host !\n"; print $socket "GET...
[SA21535] Dolphin "dir[inc]" File Inclusion Vulnerability
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...
CVE-2006-4282
PHP remote file inclusion vulnerability in MamboLogin.php in the MamboWiki component commambowiki 0.9.6 and earlier for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the IP parameter...
CVE-2006-4291
PHP remote file inclusion vulnerability in handlers/email/mod.listmail.php in PHlyMail Lite 3.4.4 and earlier Build 3.04.04 allows remote attackers to execute arbitrary PHP code via a URL in the PMpathhandler parameter...