7194 matches found
myEvent 1.2/1.3 - 'myevent.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19246/info myEvent is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and execute it in the context ...
Joomla! Component Liga Manager Online 2.0 - Remote File Inclusion
source: https://www.securityfocus.com/bid/19234/info Liga Manager Online Joomla! Component is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote...
Joomla! Component Liga Manager Online 2.0 - Remote File Inclusion
Joomla! Component Liga Manager Online 2.0 - Remote File Inclusion source: https://www.securityfocus.com/bid/19234/info Liga Manager Online Joomla! Component is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input...
CVE-2006-3911
PHP remote file inclusion vulnerability in OSI Codes PHP Live! 3.2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the csspath parameter in 1 help.php and 2 setup/header.php...
Cross-Site Scripting and Local File Inclusion in Phorum
Some vulnerabilities have been discovered in Phorum, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and potentially compromise a vulnerable system. 1 Input passed to the "template" parameter in pm.php isn't properly verified,...
Joomla! Plugin JD-WordPress 2.0-1.0 RC2 - 'wp-trackback.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19209/info JD-WordPress for Joomla is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
Joomla! Plugin JD-WordPress 2.0-1.0 RC2 - 'wp-feed.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19209/info JD-WordPress for Joomla is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
Joomla! Plugin JD-WordPress 2.0-1.0 RC2 - wp-comments-post.php Remote File Inclusion
Joomla! Plugin JD-WordPress 2.0-1.0 RC2 - wp-comments-post.php Remote File Inclusion source: https://www.securityfocus.com/bid/19209/info JD-WordPress for Joomla is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can...
Joomla! Plugin JD-WordPress 2.0-1.0 RC2 - 'wp-comments-post.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19209/info JD-WordPress for Joomla is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
Bosdates 3.x4.0 - Payment.php Remote File Inclusion
Bosdates 3.x4.0 - Payment.php Remote File Inclusion source: https://www.securityfocus.com/bid/19191/info Bosdates is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file...
Bosdates 3.x/4.0 - 'Payment.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19191/info Bosdates is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the conte...
PHPSavant Savant2 - Stylesheet.php?MosConfig_absolute_path Remote File Inclusion
PHPSavant Savant2 - Stylesheet.php?MosConfigabsolutepath Remote File Inclusion source: https://www.securityfocus.com/bid/19151/info Savant2 is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to...
VisNetic MailServer < 8.5.0.5 lang_settings Parameter Remote File Inclusion
Binary data 3690.prm...
CVE-2006-3773
PHP remote file inclusion vulnerability in smf.php in the SMF-Forum 1.3.1.3 Bridge Component comsmf For Joomla! and Mambo 4.5.3+ allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...
CVE-2006-3676
admin/galleryadmin.php in planetGallery before 14.07.2006 allows remote attackers to execute arbitrary PHP code by uploading files with a double extension and directly accessing the file in the images directory, which bypasses a regular expression check for safe file types...
solpot-adv-02.txt
SolpotCrew Community Advanced Poll ver 2.02 basepath Remote File Inclusion Vendor site : http://www.proxy2.de/scripts.php Bug Found By :Solpot a.k.a k. Hasibuan contact: [email protected] Website : http://www.solpotcrew.org/adv/solpot-adv-02.txt Greetz: choi , cow1seng , Ibnusina ,...
Prince Clan Chess Club 0.8 - 'Include.PCchess.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/19138/info Prince Clan Chess Club for Mambo is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary remote files containing malicious PHP code and...
Lussumo Vanilla 1.0 - RootDirectory Remote File Inclusion
Lussumo Vanilla 1.0 - RootDirectory Remote File Inclusion source: https://www.securityfocus.com/bid/19127/info Vanilla is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file...
[ECHO_ADV_40$2006] iManage CMS <= 4.0.12 (absolute_path) Remote File Inclusion
ECHO.OR.ID ECHOADV40$2006 --------------------------------------------------------------------------------------------------- ECHOADV40$2006 iManage CMS = 4.0.12 absolutepath Remote File Inclusion ---------------------------------------------------------------------------------------------------...
Lussumo Vanilla 1.0 - RootDirectory Remote File Inclusion
source: https://www.securityfocus.com/bid/19127/info Vanilla is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the contex...