CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7195 matches found

Exploit DB•added 2006/10/16 12:0 a.m.•33 views

OpenDock FullCore 4.4 - Remote File Inclusion

--------------------------------------------------------------------------------- OpenDock FullCore = v4.4 Remote File Include Vulnerabilities --------------------------------------------------------------------------------- Author : Matdhule Contact : [email protected] Application : OpenDock...

7.4AI score

Exploits0

Exploit DB•added 2006/10/16 12:0 a.m.•24 views

Maintain 3.0.0-RC2 - 'Example6.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/20560/info Maintain is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the conte...

7.4AI score

Exploits0

exploitpack•added 2006/10/16 12:0 a.m.•12 views

OpenDock FullCore 4.4 - Remote File Inclusion

OpenDock FullCore 4.4 - Remote File Inclusion --------------------------------------------------------------------------------- OpenDock FullCore = v4.4 Remote File Include Vulnerabilities --------------------------------------------------------------------------------- Author : Matdhule Contact ...

Exploits0

NVD•added 2006/10/13 8:7 p.m.•12 views

CVE-2006-5289

Multiple PHP remote file inclusion vulnerabilities in Vtiger CRM 4.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the calpath parameter to 1 modules/Calendar/admin/update.php, 2 modules/Calendar/admin/scheme.php, or 3 modules/Calendar/calendar.php...

7.5CVSS7.6AI score0.12101EPSS

Exploits1References6

EUVD•added 2006/10/13 7:0 p.m.•3 views

EUVD-2006-5267

Multiple PHP remote file inclusion vulnerabilities in SH-News 3.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the scriptpath parameter to 1 report.php, 2 archive.php, 3 comments.php, 4 init.php, or 5 news.php...

7.5CVSS7.7AI score0.11649EPSS

Exploits0References6

Cvelist•added 2006/10/13 7:0 p.m.•17 views

CVE-2006-5281

PHP remote file inclusion vulnerability in naboardpnr.php in n@board 3.1.9e and earlier allows remote attackers to execute arbitrary PHP code via a URL in the skin parameter...

7.6AI score0.10316EPSS

Exploits0References7

Cvelist•added 2006/10/13 7:0 p.m.•11 views

CVE-2006-5283

PHP remote file inclusion vulnerability in ftag.php in Minichat 6.0 allows remote attackers to execute arbitrary PHP code via a URL in the mostrar parameter...

7.5AI score0.08293EPSS

Exploits0References5

NVD•added 2006/10/12 10:7 p.m.•8 views

CVE-2006-5253

PHP remote file inclusion vulnerability in strload.php in Dayana Networks phpOnline aka PHP-Online 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the LangFile parameter...

7.5CVSS7.5AI score0.00861EPSS

Exploits1References3

NVD•added 2006/10/12 10:7 p.m.•11 views

CVE-2006-5256

PHP remote file inclusion vulnerability in claroline/inc/lib/import.lib.php in Claroline 1.8.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the includePath parameter...

7.5CVSS7.6AI score0.16462EPSS

Exploits1References8

NVD•added 2006/10/12 10:7 p.m.•8 views

CVE-2006-5254

PHP remote file inclusion vulnerability in registrationdetailed.inc.php in Mark Van Bellen Detailed User Registration comregistrationdetailed, aka regdetailed, 4.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

7.5CVSS7.6AI score0.04945EPSS

Exploits1References3

Cvelist•added 2006/10/12 10:0 p.m.•16 views

CVE-2006-5263

Directory traversal vulnerability in templates/header.php3 in phpMyAgenda 3.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the language parameter, as demonstrated by a parameter value naming an Apache HTTP Server log file that apparently...

7.2AI score0.07011EPSS

Exploits1References5

Cvelist•added 2006/10/12 10:0 p.m.•15 views

CVE-2006-5253

PHP remote file inclusion vulnerability in strload.php in Dayana Networks phpOnline aka PHP-Online 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the LangFile parameter...

7.5AI score0.00861EPSS

Exploits1References3

Cvelist•added 2006/10/12 10:0 p.m.•17 views

CVE-2006-5252

PHP remote file inclusion vulnerability in includes/core.lib.php in Webmedia Explorer 2.8.7 allows remote attackers to execute arbitrary PHP code via a URL in the pathinclude parameter...

7.4AI score0.00874EPSS

Exploits0References4

Cvelist•added 2006/10/12 10:0 p.m.•14 views

CVE-2006-5251

PHP remote file inclusion vulnerability in index.php in Deep CMS 2.0a allows remote attackers to execute arbitrary PHP code via a URL in the ConfigDir parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

7.3AI score0.01442EPSS

Exploits1References1

NVD•added 2006/10/12 12:7 a.m.•9 views

CVE-2006-5241

Multiple PHP remote file inclusion vulnerabilities in OpenDock Easy Gallery 1.4 and earlier, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the docdirectory parameter in 1 file.php; 2 finduser.php, 3 libuser.php, 4 libformuser.php, and 5 user.ph...

5.1CVSS7.7AI score0.11832EPSS

Exploits1References9

Packet Storm•added 2006/10/12 12:0 a.m.•27 views

Echo Security Advisory 2006.48

ECHOADV48$2006 ----------------------------------------------------------------------------------------------- ECHOADV48$2006 WebYep = 1.1.9 webyepsIncludePath Multiple Remote File Inclusion Vulnerability...

0.5AI score

Exploits0

CVE•added 2006/10/12 12:0 a.m.•33 views

CVE-2006-5240

The CVE refers to a PHP remote file inclusion in Docmint 2.0 and earlier, specifically in engine/require.php. The vulnerability requires register_globals to be enabled and allows remote code execution by supplying a URL in the MY_ENV[BASE_ENGINE_LOC] parameter. This is documented across sources (...

5.1CVSS7.9AI score0.17062EPSS

Exploits1References10Affected Software1

Packet Storm•added 2006/10/12 12:0 a.m.•24 views

Echo Security Advisory 2006.49

ECHOADV49$2006 ----------------------------------------------------------------------------------------------- ECHOADV49$2006OpenDock Easy Doc =1.4 docdirectory Multiple Remote File Inclusion Vulnerability...

0.6AI score

Exploits0

NVD•added 2006/10/11 12:7 a.m.•12 views

CVE-2006-5230

PHP remote file inclusion vulnerability in forum.php in FreeForum 0.9.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the fpath parameter...

7.5CVSS7.6AI score0.21672EPSS

Exploits1References7

Exploit DB•added 2006/10/11 12:0 a.m.•19 views

Dokeos 1.6.4 - Multiple Remote File Inclusions Vulnerabilities

source: https://www.securityfocus.com/bid/20468/info Dokeos is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by