VWar 1.5 - 'stats.php?vwar_root' Remote File Inclusion

source: https://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and...

VWar 1.5 - 'news.php?vwar_root' Remote File Inclusion

source: https://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and...

VWar 1.5 - 'challenge.php?vwar_root' Remote File Inclusion

source: https://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and...

VWar 1.5 - 'joinus.php?vwar_root' Remote File Inclusion

source: https://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and...

CVE-2006-3997

PHP remote file inclusion vulnerability in hsList.php in WoWRoster aka World of Warcraft Roster 1.5.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the subdir parameter...

CVE-2006-3984

PHP remote file inclusion vulnerability in phpAdsNew/view.inc.php in Albasoftware Phpauction 2.1 and possibly later versions, with phpAdsNew 2.0.5, allows remote attackers to execute arbitrary PHP code via a URL in the phpAdspath parameter...

CVE-2006-3982

PHP remote file inclusion vulnerability in quickie.php in Knusperleicht Quickie, probably 0.2, allows remote attackers to execute arbitrary PHP code via a URL in the QUICKPATH parameter...

CVE-2006-3967

PHP remote file inclusion vulnerability in component/option,commoskool/Itemid,34/admin.moskool.php in MamboXChange Moskool 1.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

CVE-2006-3967

PHP remote file inclusion vulnerability in component/option,commoskool/Itemid,34/admin.moskool.php in MamboXChange Moskool 1.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

CVE-2006-3947

PHP remote file inclusion vulnerability in components/commambatstaff/mambatstaff.php in the Mambatstaff 3.1b and earlier component for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

CVE-2006-3949

PHP remote file inclusion vulnerability in artlinks.dispnew.php in the Artlinks component comartlinks for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

CVE-2006-3951

PHP remote file inclusion vulnerability in moodle.php in Mam-moodle alpha component commoodle for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

Knusperleicht Quickie - Quick_Path Remote File Inclusion

Knusperleicht Quickie - QuickPath Remote File Inclusion source: https://www.securityfocus.com/bid/19271/info Quickie is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files...

Knusperleicht FAQ 1.0 Script - index.php Remote File Inclusion

Knusperleicht FAQ 1.0 Script - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/19272/info FAQ Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote...

Knusperleicht Guestbook 3.5 - 'GB_PATH' Remote File Inclusion

source: https://www.securityfocus.com/bid/19274/info GuestBook is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the contex...

Knusperleicht Quickie - 'Quick_Path' Remote File Inclusion

source: https://www.securityfocus.com/bid/19271/info Quickie is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the context ...

CVE-2006-3928

PHP remote file inclusion vulnerability in index.php in WMNews 0.2a and earlier allows remote attackers to execute arbitrary PHP code via a URL in the basedatapath parameter...

Moskool 1.5 Component - Admin.Moskool.php Remote File Inclusion

Moskool 1.5 Component - Admin.Moskool.php Remote File Inclusion source: https://www.securityfocus.com/bid/19245/info Moskool is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote...

myEvent 1.2/1.3 - 'myevent.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19246/info myEvent is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the context ...

Moskool 1.5 Component - 'Admin.Moskool.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19245/info Moskool is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the context ...