Lucene search
K

1132 matches found

EUVD
EUVD
added 2006/10/13 7:0 p.m.6 views

EUVD-2006-5267

Multiple PHP remote file inclusion vulnerabilities in SH-News 3.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the scriptpath parameter to 1 report.php, 2 archive.php, 3 comments.php, 4 init.php, or 5 news.php...

7.5CVSS7.7AI score0.03355EPSS
Exploits0References6
EUVD
EUVD
added 2006/10/12 12:0 a.m.2 views

EUVD-2006-5226

Multiple PHP remote file inclusion vulnerabilities in OpenDock Easy Gallery 1.4 and earlier, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the docdirectory parameter in 1 file.php; 2 finduser.php, 3 libuser.php, 4 libformuser.php, and 5 user.ph...

5.1CVSS7.7AI score0.03744EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2006/10/12 12:0 a.m.36 views

PHP 5.1.x < 5.1.4 Multiple Vulnerabilities

Binary data 3509.prm...

9.3CVSS7AI score0.1038EPSS
Exploits5References7
EUVD
EUVD
added 2006/10/09 10:0 p.m.3 views

EUVD-2006-5205

Multiple PHP remote file inclusion vulnerabilities in WebYep 1.1.9, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via the webyepsIncludePath in 1 files in the programm/lib/ directory including a WYApplication.php, b WYDocument.php, c WYEditor.php, d...

5.1CVSS7.7AI score0.09006EPSS
Exploits1References31
Vulnrichment
Vulnrichment
added 2006/09/27 11:0 p.m.7 views

CVE-2006-5021

Multiple PHP remote file inclusion vulnerabilities in redgun RedBLoG 0.5 allow remote attackers to execute arbitrary PHP code via a URL in 1 the root parameter in imgen.php, and the rootpath parameter in 2 admin/config.php, 3 common.php, and 4 admin/index.php. NOTE: the provenance of this...

9.9AI score0.03123EPSS
Exploits1References1
EUVD
EUVD
added 2006/09/27 11:0 p.m.2 views

EUVD-2006-5006

Multiple PHP remote file inclusion vulnerabilities in SolidState 0.4 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the basepath parameter in manager/pages/ scripts including 1 AccountsPage.class.php, 2 AddInvoicePage.class.php, 3 AddIPAddressPage.class.php, 4...

7.5CVSS7.7AI score0.10596EPSS
Exploits0References64
EUVD
EUVD
added 2006/09/19 10:0 p.m.4 views

EUVD-2006-4877

Multiple PHP remote file inclusion vulnerabilities in UNAK-CMS 1.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the dirroot parameter to 1 fckeditor/editor/filemanager/browser/default/connectors/php/connector.php or 2 fckeditor/editor/dialog/fcklink.php...

7.5CVSS7.5AI score0.08359EPSS
Exploits0References6
EUVD
EUVD
added 2006/09/09 12:0 a.m.1 views

EUVD-2006-4658

Multiple PHP remote file inclusion vulnerabilities in PhotoKorn Gallery 1.52 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the dirpath parameter in 1 includes/cart.inc.php or 2 extras/extcats.php...

7.5CVSS7.7AI score0.09945EPSS
Exploits0References9
0day.today
0day.today
added 2006/08/28 12:0 a.m.55 views

e107 <= 0.75 (GLOBALS Overwrite) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================================== e107 = 0.75 GLOBALS Overwrite Remote Code Execution Exploit ============================================================== !/usr/bin/php -q -d shortopentag=on ? printr'...

7.1AI score
Exploits0
Vulnrichment
Vulnrichment
added 2006/08/22 1:0 a.m.9 views

CVE-2006-4264

Multiple PHP remote file inclusion vulnerabilities in the lmtgmyhomepage Component comlmtgmyhomepage for Mambo allow remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter in 1 install.lmtghomepage.php and 2 mtghomepage.php. NOTE: this issue has been...

8AI score0.01787EPSS
Exploits0References5
EUVD
EUVD
added 2006/08/16 9:0 p.m.3 views

EUVD-2006-4150

Multiple PHP remote file inclusion vulnerabilities in Tony Bibbs and Vincent Furia MVCnPHP 3.0 allow remote attackers to execute arbitrary PHP code via a URL in the glConfpathlibrary parameter to 1 BaseCommand.php, 2 BaseLoader.php, and 3 BaseView.php...

7.5CVSS7.6AI score0.08723EPSS
Exploits1References8
EUVD
EUVD
added 2006/08/11 1:0 a.m.5 views

EUVD-2006-4065

Multiple PHP remote file inclusion vulnerabilities in Fabian Hainz phpCC Beta 4.2 allow remote attackers to execute arbitrary PHP code via a URL in the basedir parameter to 1 login.php, 2 reactivate.php, or 3 register.php...

7.5CVSS7.6AI score0.03161EPSS
Exploits1References6
CVE
CVE
added 2006/08/11 1:0 a.m.50 views

CVE-2006-4076

CVE-2006-4076 affects Wim Fleischhauer Docpile (docpile:we) 0.2.2. The issue is a set of PHP remote file inclusion vulnerabilities allowing an attacker to trigger remote PHP code execution by supplying a URL via the INIT_PATH parameter to any of: lib/access.inc.php, lib/folders.inc.php, lib/init....

5.1CVSS7.4AI score0.01862EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2006/08/05 12:0 a.m.3 views

EUVD-2006-3983

Multiple PHP remote file inclusion vulnerabilities in Paul M. Jones Savant2, possibly when used with the commtree component for Mambo and Joomla!, allow remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter in 1 Savant2Pluginstylesheet.php, 2...

7.5CVSS7.8AI score0.18385EPSS
Exploits1References39
EUVD
EUVD
added 2006/07/21 5:0 p.m.3 views

EUVD-2006-3765

Multiple PHP remote file inclusion vulnerabilities in component.php in iManage CMS 4.0.12 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter to 1 articles.php, 2 contact.php, 3 displaypage.php, 4 faq.php, 5 mainbody.php, 6 news.php, 7...

7.5CVSS7.7AI score0.16031EPSS
Exploits1References32
EUVD
EUVD
added 2006/07/18 9:0 p.m.4 views

EUVD-2006-3685

Multiple PHP remote file inclusion vulnerabilities in MiniBB Forum 1.5a and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter to 1 components/comminibb.php or 2 components/minibb/index.php...

7.5CVSS7.4AI score0.03765EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2006/07/17 12:0 a.m.47 views

Mandrake Linux Security Advisory : php (MDKSA-2006:122)

Multiple buffer overflows in the gd graphics library libgd 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function. One instance in gdiodp.c does not appear to be corrected in the...

10CVSS8.5AI score0.28255EPSS
Exploits8References15
securityvulns
securityvulns
added 2006/07/08 12:0 a.m.80 views

Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References8Affected Software9
securityvulns
securityvulns
added 2006/07/05 12:0 a.m.57 views

Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References5Affected Software5
EUVD
EUVD
added 2006/07/03 6:0 p.m.2 views

EUVD-2006-3337

Multiple PHP remote file inclusion vulnerabilities in Pearl For Mambo module 1.6 for Mambo, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via the 1 phpbbrootpath parameter in a includes/functionscms.php and the 2 GlobalSettingstemplatesDirectory parameter i...

5.1CVSS7.8AI score0.15324EPSS
Exploits1References15
Rows per page
Query Builder