Subberz Lite - UserFunc Remote File Inclusion

Subberz Lite - UserFunc Remote File Inclusion source: https://www.securityfocus.com/bid/18990/info SubberZLite is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containi...

[SA21038] CzarNews "tpath" File Inclusion Vulnerability

---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...

Subberz Lite - UserFunc Remote File Inclusion

source: https://www.securityfocus.com/bid/18990/info SubberZLite is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...

FlatNuke 2.5.7 - index.php Remote File Inclusion

FlatNuke 2.5.7 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/18966/info FlatNuke is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include...

FlatNuke 2.5.7 - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/18966/info FlatNuke is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP...

CVE-2006-3536

Direct static code injection vulnerability in code/classdbtext.php in EJ3 TOPo 2.2.178 and earlier allows remote attackers to execute arbitrary PHP code via parameters such as 1 descripcion and 2 pais, which are stored directly in a PHP script. NOTE: the provenance of this information is unknown;...

SimpleBoard sbp Parameter Remote File Inclusion

Binary data 3684.prm...

Mambo phpBB Component download.php phpbb_root_path Parameter Remote File Inclusion

The remote host is running the phpBB component for Mambo, a web-based bulletin board. The version of the phpBB component for Mambo installed on the remote host fails to sanitize input to the 'phpbbrootpath' parameter of the 'download.php' and other scripts before using it to include PHP code...

Ottoman CMS 1.1.3 - '?default_path=' Remote File Inclusion (2)

!/usr/bin/perl use IO::Socket; Jacek Wlodarczyk j4ck - jacekwloatgmaildotcom Title: Ottoman CMS \r\n"; print "- - Victim's ta...

Ottoman CMS <= 1.1.3 (default_path) Remote File Inclusion Exploit

Exploit for unknown platform in category web applications ================================================================= Ottoman CMS = 1.1.3 defaultpath Remote File Inclusion Exploit ================================================================= !/usr/bin/perl use IO::Socket; Jacek Wlodarcz...

Ottoman CMS &lt;= 1.1.3 (default_path) Remote File Inclusion Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; Jacek Wlodarczyk j4ck - jacekwloatgmaildotcom Title: Ottoman CMS = 1.1.3 Remote File Inclusion Exploit Application: Ottoman Content Management System Version: 1.1.3 and prior Url: http://www.lowter.com/p/ottoman Affected software...

Ottoman CMS 1.1.3 - ?default_path Remote File Inclusion (2)

Ottoman CMS 1.1.3 - ?defaultpath Remote File Inclusion 2 !/usr/bin/perl use IO::Socket; Jacek Wlodarczyk j4ck - jacekwloatgmaildotcom Title: Ottoman CMS \r\n"; print "-...

Mambo Componen phpBB 1.2.4 - Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/18914/info phpBB for Mambo is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...

Extcalendar 2.0 - Extcalendar.php Remote File Inclusion

Extcalendar 2.0 - Extcalendar.php Remote File Inclusion source: https://www.securityfocus.com/bid/18876/info ExtCalendar is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue ...

Extcalendar 2.0 - &#039;Extcalendar.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/18876/info ExtCalendar is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious P...

CVE-2006-3421

PHP remote file inclusion vulnerability in SmartSiteCMS 1.0 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via the root parameter in 1 comment.php, 2 admin/comedit.php, 3 admin/test.php, 4 admin/index.php, and 5 admin/include/incadminfoot.php, ...

CVE-2006-3374

PHP remote file inclusion vulnerability in index.php in Randshop 1.2 and earlier, including 0.9.3, allows remote attackers to execute arbitrary PHP code via a URL in the incl parameter...

CVE-2006-3361

PHP remote file inclusion vulnerability in Stud.IP 1.3.0-2 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via the 1 PHPLIBlibdir parameter in studip-phplib/oohforms.inc and 2 ABSOLUTEPATHSTUDIP parameter in studip-htdocs/archivassi.php...

CVE-2006-3363

PHP remote file inclusion vulnerability in index.php in the Glossaire module 1.7 for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the pa parameter...

CVE-2006-3374

PHP remote file inclusion vulnerability in index.php in Randshop 1.2 and earlier, including 0.9.3, allows remote attackers to execute arbitrary PHP code via a URL in the incl parameter...