2595 matches found
CVE-2006-2828
Global variable overwrite vulnerability in PHP-Nuke allows remote attackers to conduct remote PHP file inclusion attacks via a modified phpbbrootpath parameter to the admin scripts 1 index.php, 2 adminugauth.php, 3 adminboard.php, 4 admindisallow.php, 5 adminforumauth.php, 6 admingroups.php, 7...
CVE-2006-2828
CVE-2006-2828 is a vulnerability in PHP-Nuke where a global variable overwrite allows remote PHP file inclusion by a modified phpbb_root_path parameter to multiple admin scripts (index.php, admin_ug_auth.php, admin_board.php, admin_disallow.php, admin_forumauth.php, admin_groups.php, admin_ranks....
DeluxeBB <= 1.06 (Attachment mod_mime) Remote Exploit
Exploit for unknown platform in category web applications ===================================================== DeluxeBB = 1.06 Attachment modmime Remote Exploit ===================================================== !/usr/bin/php -q -d shortopentag=on ? echo "DeluxeBB = v1.06 attachment modmime...
CVE-2006-2281
X-Scripts X-Poll xpoll 2.30 allows remote attackers to execute arbitrary PHP code by using admin/images/add.php to upload a PHP file, then access it...
CVE-2006-2158
Dynamic variable evaluation vulnerability in index.php in Stadtaus Guestbook Script 1.7 and earlier, when registerglobals is enabled, allows remote attackers to modify arbitrary program variables via parameters, which are evaluated as PHP variable variables, as demonstrated by performing PHP remo...
Serendipity Blog vuln
I found this while auditing serendipty blog. You need a blog account which isnt that big of deal just google all the sites that give out free blogs for this to work. After you get hte blog account you go into your admin panel where there will be config options. The mysql details are editable from...
vBulletin ImpEx 1.74 - Remote Command Execution
vBulletin ImpEx 1.74 - Remote Command Execution " ."turl:" ."hurl:" ."cmd:" ."" .""; if !isset$POST'submit' echo $form; else $file = fopen "test.txt", "w+"; fwrite$file, ""; fclose$file; $file = fopen $turl.$hurl, "r"; if !$file echo "Unable to get output.\n"; exit; echo $form; while !feof $file...
Limbo CMS Multiple Vulnerabilities
The remote version of Limbo CMS is vulnerable to several flaws. SPDX-FileCopyrightText: 2006 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2006-1363
The CVE-2006-1363 issue affects Free Web Publishing System (FreeWPS) 2.11 (Justin White/YTZ). A remote attacker can upload a PHP file to the /upload directory via the dirPath parameter and then access that file to execute arbitrary PHP code, enabling remote code execution. Impact is partial confi...
Directory traversal
Directory traversal vulnerability in Gallery 2.0.3 and earlier, and 2.1 before RC-2a, allows remote attackers to include arbitrary PHP files via ".." dot dot sequences in the stepOrder parameter to 1 upgrade/index.php or 2 install/index.php...
FCKEditor 2.0 <= 2.2 (connector.php) Remote Shell Upload Exploit
No description provided by source. ?php ---fckeditor22xpl.php 15.38 04/12/2005 FCKEditor 2.0 = 2.2 shell upload coded by rgod site: http://retrogod.altervista.org usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: "Security against defeat implies defensive tactics; ability to...
CVE-2006-0075
Direct static code injection vulnerability in phpBook 1.3.2 and earlier allows remote attackers to execute arbitrary PHP code via the e-mail field mail variable in a new message, which is written to a PHP file...
Plogger exploit method! - Vulnerability warning-the black bar safety net
http://www.hackeroo.com/Plogger 是 一 款 基于 PHP 的 网络日记 程序 the. Plogger does not filter the user submits the URI of the data, exploit vulnerabilities in the WEB permissions to execute arbitrary commands. Vulnerability in'plog-admin-functions.php'script for user-submitted'configbasedir'parameter is no...
security flaw
The RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when registerglobals is enabled, allows remote attackers to modify the GLOBALS array and bypass security protections of PHP applications via a multipart/form-data POST request with a "GLOBALS" fileupload field...
PT-2005-4920 · Jamit · Jamit Job Board
Name of the Vulnerable Software and Affected Versions: Jamit Job Board versions 2.4.1 and earlier Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the cat parameter in the "index.php" file. The vendor has disputed this issue, claiming it has no basi...
DoceboLms 2.0.4 - connector.php Arbitrary File Upload
DoceboLms 2.0.4 - connector.php Arbitrary File Upload DoceboLMS body background-color:111111; SCROLLBAR-ARROW-COLOR: ffffff; SCROLLBAR-BASE-COLOR: black; CURSOR: crosshair; color: 1CB081; img background-color: FFFFFF !important input background-color: 303030 !important option background-color:...
CVE-2005-3574
PHP file inclusion vulnerability in index.php of iCMS allows remote attackers to include arbitrary files via the page parameter...
Invision Power Board Privilege Esaclation (2.0.1 + more)
--------- Title: Invision Power Board --------- Version: 2.0.1 maybe more --------- Severity: Low --------- Info: Invision Board Admin able to execute arbitrary code as uid of the apache process. ---------- Bugs: 1 Fails to jail location of Task Managers scripts and allows directory traversal. 2...
CVE-2005-3519
Multiple PHP file inclusion vulnerabilities in MySource 2.14.0 allow remote attackers to execute arbitrary PHP code and include arbitrary local files via the 1 INCLUDEPATH and 2 SQUIZLIBPATH parameters in newupgradefunctions.php, 3 the INCLUDEPATH parameter in initmysource.php, and the PEARPATH...
CVE-2005-3299
PHP file inclusion vulnerability in grabglobals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $redirect parameter, possibly involving the subform array. Recent assessments: litonhh1 at November 03, 2022 5:05pm UTC reported: nmap —script exploit...