CVE-2006-5245

Summary (CVE-2006-5245): Eazy Cart is affected by a authentication bypass vulnerability in the admin area. A remote attacker can gain administrative access by issuing a direct request to a file such as admin/home/index.php (and potentially other PHP scripts under the admin/ directory), bypassing ...

7 php scripts File Inclusion / Source disclosure Vuln

Title..: 7 php scripts File Inclusion Vuln / Source disclosure Credits: DarkFig Og.link: http://acid-root.new.fr/poc/13061007.txt Using http://www.google.com/codesearch Few examples about what we can do with a code search engine For educational purpose only. You can use regex in your research, th...

TribunaLibre 3.12 Beta - ftag.php Remote File Inclusion

TribunaLibre 3.12 Beta - ftag.php Remote File Inclusion Title..: 7 php scripts File Inclusion Vuln / Source disclosure Credits: DarkFig Og.link: http://acid-root.new.fr/poc/13061007.txt Using http://www.google.com/codesearch Few examples about what we can do with a code search engine For...

registroTL - 'main.php' Remote File Inclusion

Title..: 7 php scripts File Inclusion Vuln / Source disclosure Credits: DarkFig Og.link: http://acid-root.new.fr/poc/13061007.txt Using http://www.google.com/codesearch Few examples about what we can do with a code search engine For educational purpose only. You can use regex in your research, th...

eboli (index.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications =================================================== eboli index.php Remote File Include Vulnerability =================================================== Title..: 7 php scripts File Inclusion Vuln / Source disclosure Credits: DarkFig Using...

TribunaLibre 3.12 Beta - 'ftag.php' Remote File Inclusion

Title..: 7 php scripts File Inclusion Vuln / Source disclosure Credits: DarkFig Og.link: http://acid-root.new.fr/poc/13061007.txt Using http://www.google.com/codesearch Few examples about what we can do with a code search engine For educational purpose only. You can use regex in your research, th...

phpBB <= 2.0.21 (Poison NULL Byte) Remote Exploit

Exploit for unknown platform in category web applications ================================================= phpBB newagent='Mozilla/4.0 compatible; Windows 5.1'; $ua-cookiejar HTTP::Cookies-new; $url='http://'.$ARGV0.'/login.php'; $data="username=".$ARGV1."&password=".$ARGV2."&login=1"; my $req =...

WoW Roster 1.5 - hsList.php?subdir Remote File Inclusion

WoW Roster 1.5 - hsList.php?subdir Remote File Inclusion source: https://www.securityfocus.com/bid/19269/info WoW Roster is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit may allow unauthorized users to execute...

DGNews v 1.5 File Upload Vuln.

DGNews v 1.5 File Upload Vuln. Vuln. discovered by : r0t Date: 29 may 2006 vendor:www.diangemilang.com/dgscripts.php affected versions:v 1.5 and prior orginal advisory: http://pridels.blogspot.com/2006/05/dgnews-v-15-file-upload-vuln.html Vuln. Description: It is possible to upload arbitrary file...

Russcom PHPImages lack of validation

Russcom PHPImages lack of validation Discovered by: Nomenumbra Date: 21/5/2006 impact:moderate Russcom's PHPImages doesn't validate if the uploaded file is an image, it just checks for the extension, thus allowing an attacker to upload php scripts with a .gif extension for example, potentially...

GLSA-200605-04 : phpWebSite: Local file inclusion

The remote host is affected by the vulnerability described in GLSA-200605-04 phpWebSite: Local file inclusion rgod has reported that the 'hubdir' parameter in 'index.php' isn't properly verified. When 'magicquotesgpc' is disabled, this can be exploited to include arbitrary files from local...

phpWebSite: Local file inclusion

Background phpWebSite provides a complete web site content management system. Description rgod has reported that the "hubdir" parameter in "index.php" isn't properly verified. When "magicquotesgpc" is disabled, this can be exploited to include arbitrary files from local ressources. Impact If...

Authentication flaw

publish.ical.php in Jim Hu and Chad Little PHP iCalendar 2.21 and earlier does not require authentication for write access to the calendars directory, which allows remote attackers to upload and execute arbitrary PHP scripts via a WebDAV PUT request with a filename containing a .php extension and...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the gamename parameter in tellafriend.php, 2 the loginstatus parameter in loginbox.php, 3 the submissionstatus parameter in index.php, the 4...

Design/Logic Flaw

Invision Power Board IPB 2.1.4 and earlier allows remote attackers to view sensitive information via a direct request to multiple PHP scripts that include the full path in error messages, including 1 PEAR/Text/Diff/Renderer/inline.php, 2 PEAR/Text/Diff/Renderer/unified.php, 3 PEAR/Text/Diff3.php,...

CVE-2006-0909

Invision Power Board IPB 2.1.4 and earlier allows remote attackers to view sensitive information via a direct request to multiple PHP scripts that include the full path in error messages, including 1 PEAR/Text/Diff/Renderer/inline.php, 2 PEAR/Text/Diff/Renderer/unified.php, 3 PEAR/Text/Diff3.php,...

Design/Logic Flaw

DISPUTED dotProject 2.0.1 and earlier allows remote attackers to obtain sensitive information via direct requests with an invalid baseDir to certain PHP scripts in the db directory, which reveal the path in an error message. NOTE: the vendor disputes this issue, saying that it could only occur if...

CVE-2006-0754

dotProject 2.0.1 and earlier allows remote attackers to obtain sensitive information via direct requests with an invalid baseDir to certain PHP scripts in the db directory, which reveal the path in an error message. NOTE: the vendor disputes this issue, saying that it could only occur if the...

CVE-2006-0754

dotProject 2.0.1 and earlier allows remote attackers to obtain sensitive information via direct requests with an invalid baseDir to certain PHP scripts in the db directory, which reveal the path in an error message. NOTE: the vendor disputes this issue, saying that it could only occur if the...

CVE-2006-0754

CVE-2006-0754 affects dotProject 2.0.1 and earlier. The issue allows remote attackers to obtain sensitive information via direct requests with an invalid baseDir to certain PHP scripts in the db directory, revealing the path in an error message. Related connected sources also describe multiple sc...