100 matches found
CVE-2008-1416
CVE-2008-1416 : PHPAuction GPL 2.51 contains multiple remote file inclusion vulnerabilities in the includes/ files (converter.inc.php, messages.inc.php, settings.inc.php) that allow an attacker to execute arbitrary PHP code via a crafted include_path URL. Root cause is unsanitized include handlin...
PHPAuction Multiple Script include_path Parameter File Inclusion
The remote host is running PHPAuction, a PHP script for building auction websites. The version of PHPAuction installed on the remote host fails to sanitize input to the 'includepath' parameter of several scripts before using it to include PHP code. An unauthenticated, remote attacker can exploit...
PHPauction GPL Enhanced 2.51 Multiple RFI Vulnerabilities
No description provided by source. Name : PHPauction GPL 2.51 Multiple Remote File Include Vulnerabilities Download From : http://www.johnrayfield.com/phpauction/phpauction-gpl-enhanced-251.zip Found By : RoMaNcYxHaCkEr RoMaNTiC-TeaM BlackxHat , BlackBox , alwheed Home Page : WwW.4RxH.CoM...
phpauction-rfi.txt
Name : PHPauction GPL 2.51 Multiple Remote File Include Vulnerabilities Download From : http://www.johnrayfield.com/phpauction/phpauction-gpl-enhanced-251.zip Found By : RoMaNcYxHaCkEr RoMaNTiC-TeaM BlackxHat , BlackBox , alwheed Home Page : WwW.4RxH.CoM...
phpAuction GPL Enhanced 2.51 - Multiple Remote File Inclusions
Name : PHPauction GPL 2.51 Multiple Remote File Include Vulnerabilities Download From : http://www.johnrayfield.com/phpauction/phpauction-gpl-enhanced-251.zip Found By : RoMaNcYxHaCkEr RoMaNTiC-TeaM BlackxHat , BlackBox , alwheed Home Page : WwW.4RxH.CoM...
PHPauction GPL Enhanced 2.51 Multiple RFI Vulnerabilities
Exploit for unknown platform in category web applications ========================================================= PHPauction GPL Enhanced 2.51 Multiple RFI Vulnerabilities ========================================================= Name : PHPauction GPL 2.51 Multiple Remote File Include...
phpAuction GPL Enhanced 2.51 - Multiple Remote File Inclusions
phpAuction GPL Enhanced 2.51 - Multiple Remote File Inclusions Name : PHPauction GPL 2.51 Multiple Remote File Include Vulnerabilities Download From : http://www.johnrayfield.com/phpauction/phpauction-gpl-enhanced-251.zip Found By : RoMaNcYxHaCkEr RoMaNTiC-TeaM BlackxHat , BlackBox , alwheed Home...
phpauction21.txt
+-------------------------------------------------------------------- + + PHPAuction 2.1 with phpAdsNew 2.0.5 Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: PHPAuction 2.1 maybe higher with phpAdsNew, + phpAdsNew 2.0.5 maybe...
CVE-2006-3984
PHP remote file inclusion vulnerability in phpAdsNew/view.inc.php in Albasoftware Phpauction 2.1 and possibly later versions, with phpAdsNew 2.0.5, allows remote attackers to execute arbitrary PHP code via a URL in the phpAdspath parameter...
CVE-2006-3984
PHPAuction/Albasoftware Phpauction is affected by CVE-2006-3984. The PHP remote file inclusion vulnerability exists in phpAdsNew/view.inc.php (and phpAdsNew 2.0.5) that allows remote attackers to execute arbitrary PHP code via a URL provided to the phpAds_path parameter. The affected software ver...
CVE-2006-3984
PHP remote file inclusion vulnerability in phpAdsNew/view.inc.php in Albasoftware Phpauction 2.1 and possibly later versions, with phpAdsNew 2.0.5, allows remote attackers to execute arbitrary PHP code via a URL in the phpAdspath parameter...
PHPAuction 2.1 (maybe higher) with phpAdsNew 2.0.5 RFI
+-------------------------------------------------------------------- + + PHPAuction 2.1 with phpAdsNew 2.0.5 Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: PHPAuction 2.1 maybe higher with phpAdsNew, + phpAdsNew 2.0.5 maybe...
phpAuction 2.1 - phpAds_path Remote File Inclusion
phpAuction 2.1 - phpAdspath Remote File Inclusion +-------------------------------------------------------------------- + + PHPAuction 2.1 Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: PHPAuction 2.1 maybe higher + Venedor...
PHPAuction 2.1 (phpAds_path) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================ PHPAuction 2.1 phpAdspath Remote File Inclusion Vulnerability ================================================================...
phpAuction 2.1 - 'phpAds_path' Remote File Inclusion
+-------------------------------------------------------------------- + + PHPAuction 2.1 Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: PHPAuction 2.1 maybe higher + Venedor ...........: http://www.phpauction.net, + Class...
PHPAuction 2.1 (phpAds_path) Remote File Inclusion Vulnerability
No description provided by source. +-------------------------------------------------------------------- + + PHPAuction 2.1 Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: PHPAuction 2.1 maybe higher + Venedor ...........:...
phpauction Admin Authentication Bypass
The remote host is running phpauction prior or equal to 2.0 or a modified version. There is a flaw when handling cookie-based authentication credentials which may allow an attacker to gain unauthorized administrative access to the auction system. SPDX-FileCopyrightText: 2005 Tobias Glemser...
Phpauction <= 2.5 Multiple Vulnerabilities
The remote host is running Phpauction or one of its affiliate versions, such as Web2035 Auction. Phpauction is a web-based auction system written in PHP. The version of Phpauction on the remote host suffers from multiple flaws : - Remote Code Execution An attacker can control the 'lan' variable...
PHPAuction Admin Authentication Bypass
The remote host is running PHPAuction, a web-based auction script written in PHP. There is a flaw in the version of PHPAuction installed on the remote host involving its handling of cookie-based authentication credentials. Using a specially crafted request, an unauthenticated, remote attacker can...
[SA15967] Phpauction GPL Multiple Vulnerabilities
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...