1756 matches found
FreeBSD Ports: phpmyfaq
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: phpmyfaq
The remote host is missing an update to the system as announced in the referenced advisory. VID 395e0faa-ffa7-11e0-8ac4-6c626dd55a41 OpenVAS Vulnerability Test $ Description: Auto generated from VID 395e0faa-ffa7-11e0-8ac4-6c626dd55a41 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
CVE-2011-4825
Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted...
Code injection
Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted...
CVE-2011-4825
Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted...
CVE-2011-4825
CVE-2011-4825 describes a static code injection vulnerability in the file inc/function.base.php of the Ajax File and Image Manager (used in various products). The flaw allows remote attackers to inject arbitrary PHP code into the file data.php via crafted parameters. Affected versions include Aja...
phpMyFAQ 2.7.0 Code Execution
?php / ------------------------------------------------------------------------ phpMyFAQ = 2.7.0 ajaxcreatefolder.php Remote Code Execution Exploit ------------------------------------------------------------------------ author............: Egidio Romano aka EgiX mail..............:...
PHPMyFAQ 2.7.0 - ajax_create_folder.php Remote Code Execution
PHPMyFAQ 2.7.0 - ajaxcreatefolder.php Remote Code Execution ?php / ------------------------------------------------------------------------ phpMyFAQ = 2.7.0 ajaxcreatefolder.php Remote Code Execution Exploit ------------------------------------------------------------------------...
PHPMyFAQ 2.7.0 - 'ajax_create_folder.php' Remote Code Execution
?php / ------------------------------------------------------------------------ phpMyFAQ = 2.7.0 ajaxcreatefolder.php Remote Code Execution Exploit ------------------------------------------------------------------------ author............: Egidio Romano aka EgiX mail..............:...
phpMyFAQ <= 2.7.0 (ajax_create_folder.php) Remote Code Execution
Exploit for php platform in category web applications ?php / ------------------------------------------------------------------------ phpMyFAQ = 2.7.0 ajaxcreatefolder.php Remote Code Execution Exploit ------------------------------------------------------------------------ author............:...
FreeBSD : phpmyfaq -- Remote PHP Code Injection Vulnerability (395e0faa-ffa7-11e0-8ac4-6c626dd55a41)
The phpMyFAQ project reports : The phpMyFAQ Team has learned of a serious security issue that has been discovered in our bundled ImageManager library we use in phpMyFAQ 2.6 and 2.7. The bundled ImageManager library allows injection of arbitrary PHP code via POST requests. %NASLMINLEVEL 70300 C...
phpmyfaq -- Remote PHP Code Injection Vulnerability
The phpMyFAQ project reports: The phpMyFAQ Team has learned of a serious security issue that has been discovered in our bundled ImageManager library we use in phpMyFAQ 2.6 and 2.7. The bundled ImageManager library allows injection of arbitrary PHP code via POST requests...
CVE-2011-3783
phpMyFAQ 2.6.13 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lang/languageuk.php and certain other files...
Information disclosure
phpMyFAQ 2.6.13 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lang/languageuk.php and certain other files...
CVE-2011-3783
phpMyFAQ 2.6.13 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lang/languageuk.php and certain other files...
CVE-2011-3783
phpMyFAQ 2.6.13 is affected by an information-disclosure vulnerability: remote attackers can obtain the installation path by requesting a PHP file directly, which outputs an error message revealing paths (e.g., lang/language_uk.php). The vulnerability is described in multiple sources; no fix/vers...
phpMyFAQ Backdoor Unauthorized Access Vulnerability
phpMyFAQ is prone to an unauthorized-access vulnerability due to a backdoor in certain versions of the application. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
phpMyFAQ Backdoor Unauthorized Access Vulnerability
phpMyFAQ is prone to an unauthorized-access vulnerability due to a backdoor in certain versions of the application. Successful exploits allow remote attackers to execute arbitrary PHP code in the context of the affected application. phpMyFAQ 2.6.11 and 2.6.12 obtained between December 4, 1010, an...
CVE-2010-4558
phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and December 15th 2010, contains an externally introduced modification Trojan Horse in the getTopTen method in inc/Faq.php, which allows remote attackers to execute arbitrary PHP code...
Code injection
phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and December 15th 2010, contains an externally introduced modification Trojan Horse in the getTopTen method in inc/Faq.php, which allows remote attackers to execute arbitrary PHP code...