XCMS 1.82 - LocalRemote File Inclusion

XCMS 1.82 - LocalRemote File Inclusion | ' \ / \ / / \ ' \ | | | | / / | | | || ||//\|| || XCMS = 1.82 LFI & RCE Xpl Nexen rocked this one ; LFIs http://127.0.0.1/xcms/index.php?pg=admin&s=../../../../../etc/passwd\0 http://127.0.0.1/xcms/index.php?mod=existing...

CVE-2007-6550

form.php in PMOS Help Desk 2.4 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to conduct eval injection attacks and execute arbitrary PHP code via the options array parameter...

Remote file inclusion

PHP remote file inclusion vulnerability in admin/frontpageright.php in Arcadem LE 2.04 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the loadadminpage parameter...

PHPMySMS gateway.php远程文件包含漏洞

BUGTRAQ ID: 18633 PHPMySMS是一款开放源码的用PHP实现的基于Web的短信解决方案。 PHPMySMS的实现上存在输入验证漏洞，远程攻击者可能利用此漏洞在服务器上执行任意命令。 远程攻击者可以利用PHPMySMS的gateway.php文件中的远程文件包含漏洞执行任意PHP代码。漏洞代码如下： ============================================================== if $POSTmode == "1" or $GETmode == "1" include "config.php"; else include...

PMOS Help Desk <= 2.4 Remote Command Execution Exploit

No description provided by source. ?php / ------------------------------------------------------ PMOS Help Desk = 2.4 Remote Command Execution Exploit ------------------------------------------------------ author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http://www.h2desk.com/pmos...

PMOS Help Desk <= 2.4 Remote Command Execution Exploit

Exploit for unknown platform in category web applications ====================================================== PMOS Help Desk = 2.4 Remote Command Execution Exploit ====================================================== ?php / ------------------------------------------------------ PMOS Help Des...

Shadowed Portal 5.7d3 - Remote Command Execution

!/usr/bin/python -- coding: iso-8859-15 -- ''' / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ------------------------------------------------------------------------------------------------ This is a Public Exploit. 21/12/2007 dd-mm-yyyy...

CVE-2007-6464

Multiple PHP remote file inclusion vulnerabilities in Form tools 1.5.0b allow remote attackers to execute arbitrary PHP code via a URL in the grootdir parameter to 1 adminpageopen.php and 2 clientpageopen.php in global/templates/...

Code injection

Direct static code injection vulnerability in wiki/index.php in Bitweaver 2.0.0 and earlier, when comments are enabled, allows remote attackers to inject arbitrary PHP code via an editcomments action...

Code injection

Direct static code injection vulnerability in index.php in Flat PHP Board 1.2 and earlier allows remote attackers to inject arbitrary PHP code via the 1 username, 2 password, and 3 email parameters when registering a user account, which can be executed by accessing the user's php file for this...

CVE-2007-6412

Direct static code injection vulnerability in wiki/index.php in Bitweaver 2.0.0 and earlier, when comments are enabled, allows remote attackers to inject arbitrary PHP code via an editcomments action...

Remote file inclusion

PHP remote file inclusion vulnerability in blocks/blocksitemap.php in ViArt 1 CMS 3.3.2, 2 HelpDesk 3.3.2, 3 Shop Evaluation 3.3.2, and 4 Shop Free 3.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the rootfolderpath parameter. NOTE: some of these details are obtained from...

Remote file inclusion

PHP remote file inclusion vulnerability in adminbereich/designconfig.php in Fastpublish CMS 1.9999 allows remote attackers to execute arbitrary PHP code via a URL in the configfsBase parameter, a different vector than CVE-2006-2726...

CVE-2007-6296

PHP remote file inclusion vulnerability in userspopupL.php3 in phpMyChat 0.14.5 allows remote attackers to execute arbitrary PHP code via a URL in the From parameter...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 level parameter to a installmodule.php and b uninstallmodule.php in upload/xax/admin/modules/, c upload/xax/admin/patch/index.php, and d...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Charray's CMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the ccmslibrarypath parameter to 1 markdown.php and 2 gallery.php in decoder/...

Remote file inclusion

PHP remote file inclusion vulnerability in admin/kfm/initialise.php in DevMass Shopping Cart 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the kfmbasepath parameter...

CVE-2007-6139

PHP remote file inclusion vulnerability in index.php in Mp3 ToolBox 1.0 beta 5 allows remote attackers to execute arbitrary PHP code via a URL in the skinfile parameter...

CVE-2007-6133

PHP remote file inclusion vulnerability in admin/kfm/initialise.php in DevMass Shopping Cart 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the kfmbasepath parameter...

ucms-backdoor.txt

Opencosmo Security http://www.opencosmo.com Ucms v. 1.8 Np exploit function sethostseite document.host.action = seite + 'index.php?&q=test&e=1'; document.all.data.innerHTML = document.host.action; /he...