CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7194 matches found

Cvelist•added 2006/08/22 5:0 p.m.•18 views

CVE-2006-4291

PHP remote file inclusion vulnerability in handlers/email/mod.listmail.php in PHlyMail Lite 3.4.4 and earlier Build 3.04.04 allows remote attackers to execute arbitrary PHP code via a URL in the PMpathhandler parameter...

7.5AI score0.08686EPSS

Exploits1References6

exploitpack•added 2006/08/22 12:0 a.m.•37 views

RedBlog 0.5 - index.php Remote File Inclusion

RedBlog 0.5 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/19658/info RedBLoG is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing...

Exploits0

NVD•added 2006/08/21 10:4 p.m.•7 views

CVE-2006-4276

PHP remote file inclusion vulnerability in Tutti Nova 1.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the TNLIBDIR parameter to novalib/class.novaEdit.mysql.php...

7.5CVSS7.6AI score0.12825EPSS

Exploits1References6

NVD•added 2006/08/21 10:4 p.m.•8 views

CVE-2006-4275

PHP remote file inclusion vulnerability in catalogshop.php in the CatalogShop component for Mambo comcatalogshop allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

7.5CVSS7.6AI score0.00741EPSS

Exploits0References4

NVD•added 2006/08/21 10:4 p.m.•9 views

CVE-2006-4278

PHP remote file inclusion vulnerability in includes/layout/plain.footer.php in SportsPHool 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the mainnav parameter...

7.5CVSS7.5AI score0.14705EPSS

Exploits1References6

Cvelist•added 2006/08/21 10:0 p.m.•13 views

CVE-2006-4278

PHP remote file inclusion vulnerability in includes/layout/plain.footer.php in SportsPHool 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the mainnav parameter...

7.5AI score0.14705EPSS

Exploits1References6

NVD•added 2006/08/21 6:4 p.m.•12 views

CVE-2006-4241

PHP remote file inclusion vulnerability in processor/reporter.sql.php in the Reporter Mambo component comreporter allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

7.5CVSS7.5AI score0.02164EPSS

Exploits1References4

Cvelist•added 2006/08/21 6:0 p.m.•16 views

CVE-2006-4242

PHP remote file inclusion vulnerability in install.jim.php in the JIM 1.0.1 component for Joomla or Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

7.5AI score0.01621EPSS

Exploits1References8

Exploit DB•added 2006/08/21 12:0 a.m.•23 views

Mambo Component EstateAgent 1.0.2 - MosConfig_absolute_path Remote File Inclusion

source: https://www.securityfocus.com/bid/19625/info The Mambo EstateAgent component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and...

7AI score

Exploits0

exploitpack•added 2006/08/21 12:0 a.m.•14 views

Mambo Component EstateAgent 1.0.2 - MosConfig_absolute_path Remote File Inclusion

Mambo Component EstateAgent 1.0.2 - MosConfigabsolutepath Remote File Inclusion source: https://www.securityfocus.com/bid/19625/info The Mambo EstateAgent component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit...

0.1AI score

Exploits0

Exploit DB•added 2006/08/21 12:0 a.m.•18 views

ToendaCMS 0.x/1.0.x - 'TCMS_Administer' Remote File Inclusion

source: https://www.securityfocus.com/bid/19626/info ToendaCMS is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and execute it in the conte...

7.4AI score

Exploits0

exploitpack•added 2006/08/21 12:0 a.m.•18 views

DieselScripts Smart Traffic - index.php Remote File Inclusion

DieselScripts Smart Traffic - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/19630/info Smart Traffic is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remot...

0.3AI score

Exploits0

securityvulns•added 2006/08/21 12:0 a.m.•67 views

[SA21593] NES Game & NES System "phphtmllib" File Inclusion

TITLE: NES Game & NES System "phphtmllib" File Inclusion SECUNIA ADVISORY ID: SA21593 VERIFY ADVISORY: http://secunia.com/advisories/21593/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: NES Game & NES System http://secunia.com/product/11630/ DESCRIPTION: Kacper has...

0.4AI score

Exploits0

Exploit DB•added 2006/08/21 12:0 a.m.•22 views

DieselScripts Smart Traffic - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/19630/info Smart Traffic is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the...

7.4AI score

Exploits0

exploitpack•added 2006/08/21 12:0 a.m.•18 views

Mambo Component Display MOSBot Manager - MosConfig_absolute_path Remote File Inclusion

Mambo Component Display MOSBot Manager - MosConfigabsolutepath Remote File Inclusion source: https://www.securityfocus.com/bid/19621/info The Mambo Display MOSBot Manager component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attack...

Exploits0

securityvulns•added 2006/08/21 12:0 a.m.•71 views

[SA21594] SportsPHool "mainnav" File Inclusion Vulnerability

TITLE: SportsPHool "mainnav" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA21594 VERIFY ADVISORY: http://secunia.com/advisories/21594/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: SportsPHool 1.x http://secunia.com/product/11629/ DESCRIPTION: Kacper has...

0.3AI score

Exploits0

securityvulns•added 2006/08/21 12:0 a.m.•73 views

[SA21571] Fantastic News "CONFIG[script_path]" File Inclusion Vulnerability

TITLE: Fantastic News "CONFIGscriptpath" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA21571 VERIFY ADVISORY: http://secunia.com/advisories/21571/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Fantastic News 2.x http://secunia.com/product/6254/ DESCRIPTION:...

1AI score

Exploits0

FreeBSD•added 2006/08/21 12:0 a.m.•47 views

tikiwiki -- multiple vulnerabilities

Secunia reports: Thomas Pollet has discovered a vulnerability in TikiWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "highlight" parameter in tiki-searchindex.php is not properly sanitised before being returned to the user. This can be...

6.4AI score

Exploits0References2

Exploit DB•added 2006/08/21 12:0 a.m.•36 views

Mambo Component Display MOSBot Manager - 'MosConfig_absolute_path' Remote File Inclusion

source: https://www.securityfocus.com/bid/19621/info The Mambo Display MOSBot Manager component is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PH...

7AI score

Exploits0

exploitpack•added 2006/08/18 12:0 a.m.•9 views

Mambo Component LMTG Myhomepage 1.2 - Multiple Remote File Inclusions

Mambo Component LMTG Myhomepage 1.2 - Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/19584/info The lmtgmyhomepage component for Mambo is prone multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploi...

7.5AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by