CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

371 matches found

seebug.org•added 2009/12/28 12:0 a.m.•14 views

phpcms 2.4 guestbook.php default.php)远程文件包含漏洞

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2009/12/28 12:0 a.m.•9 views

phpcms 1.2.1pl1 class.layout-phpcms.php 本地文件包含漏洞

No description provided by source...

7.1AI score

Exploits0

Packet Storm•added 2009/10/20 12:0 a.m.•15 views

phpCMS 2008 Remote File Disclosure

Securitylab.ir Application Info: Name: phpcms 2008 Version: All Discoverd By: Securitylab.ir Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir Vulnerability Info: Type: Remote File Disclosure Vulnerability Risk: Medium...

7.4AI score

Exploits0

seebug.org•added 2009/10/20 12:0 a.m.•12 views

phpcms 2008 Remote File Disclosure Vulnerability

No description provided by source. Securitylab.ir Application Info: Name: phpcms 2008 Version: All Discoverd By: Securitylab.ir Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir Vulnerability Info: Type: Remote File Disclosure Vulnerability Risk: Medium...

7.1AI score

Exploits0

myhack58•added 2009/10/20 12:0 a.m.•20 views

phpcms 2 0 0 8 arbitrary download vulnerability-vulnerability warning-the black bar safety net

Author:Dr. 漏洞文件 download.php ? php require dirnameFILE.'/ include/common.inc.php'; the $a sub K = phpcmsauth$a sub K, 'DECODE', BECAUSE; //note!! ifempty$a sub K showmessage$LANG'illegalparameters'; parsestr$a sub K; ifisset$i $downid = intval$i; if! isset$m showmessage$LANG'illegalparameters';...

Exploits0

exploitpack•added 2009/10/19 12:0 a.m.•19 views

phpCMS 2008 - File Disclosure

phpCMS 2008 - File Disclosure Securitylab.ir Application Info: Name: phpcms 2008 Version: All Discoverd By: Securitylab.ir Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir Vulnerability Info: Type: Remote File Disclosure Vulnerability Risk: Medium...

7.4AI score

Exploits0

0day.today•added 2009/10/19 12:0 a.m.•18 views

phpCMS 2008 file disclosure

Exploit for unknown platform in category web applications =========================== phpCMS 2008 file disclosure =========================== Application Info: Name: phpcms 2008 Version: All Discoverd By: Securitylab Vulnerability Info: Type: Remote File Disclosure Vulnerability Risk: Medium...

7.1AI score

Exploits0

securityvulns•added 2009/10/19 12:0 a.m.•56 views

phpcms 2008 Remote File Disclosure Vulnerability

0.9AI score

Exploits0

seebug.org•added 2009/10/19 12:0 a.m.•13 views

phpCMS 2008 file disclosure

7.1AI score

Exploits0

Exploit DB•added 2009/10/19 12:0 a.m.•26 views

phpCMS 2008 - File Disclosure

7.4AI score

Exploits0

myhack58•added 2009/09/23 12:0 a.m.•9 views

phpcms2008 latest 0day & Exp-vulnerability warning-the black bar safety net

Source:My5t3ry The vulnerability exists in the yp/job. php 1 7-3 4 line, the urldecode function to blame, the code is as follows: | 1 2 3 4 5 6 7 8 9 1 0 1 1 1 2 1 3 1 4 1 5 1 6 1 7 1 8 | switch$action case 'list': $catid = intval$catid; $head'keywords' .= 'List positions'; $head'title' .= 'Job...

8.4AI score

Exploits0

seebug.org•added 2008/10/05 12:0 a.m.•12 views

phpCMS 1.2.x任意文件包含漏洞

phpCMS是灵活、高效的内容管理系统。 phpCMS中存在服务器端任意文件包含漏洞，起因是在进行会话检查前调用了include语句。远程攻击者可以未经认证利用这个漏洞执行任意代码。有漏洞的include调用位于class.layoutphpcms.php中： ifisset$GET'language' && $GET'language' != '' include$PHPCMSINCLUDEPATH.'/language.'.$GETlanguage; ... phpCMS phpCMS 1.2.1pl1 phpCMS phpCMS 1.2.1 phpCMS phpCMS 1.2.0...

7.1AI score

Exploits0

seebug.org•added 2008/09/16 12:0 a.m.•9 views

PHPCMS2007 SP6 vote模块SQL注射漏洞

vote/vote.php // 22行 $optionids = isarray$op ? implode',',$op : $op; ... $db-query"UPDATE ".TABLEVOTEOPTION." SET number = number+1 WHERE optionid IN $optionids "; PHPCMS2007 SP6 暂无 !/usr/bin/php ?php printr' +---------------------------------------------------------------------------+ Phpcms 200...

7.1AI score

Exploits0

myhack58•added 2008/08/20 12:0 a.m.•18 views

Phpcms 2 0 0 7 remote file inclusion vulnerability-vulnerability warning-the black bar safety net

PS:@extract function. Phpcms 2 0 0 7 remote file include vulnerability Flyh4t w. s. t www.wolvez.org The cms is the core configuration file/include/common. inc. php has a defect -------------------------------------------- //2 3 row start @extract$POST, EXTROVERWRITE; @extract$GET, EXTROVERWRITE;...

0.3AI score

Exploits0

myhack58•added 2008/07/15 12:0 a.m.•12 views

Phpcms 2 0 0 7 remote file inclusion vulnerability-vulnerability warning-the black bar safety net

zzPhpcms 2 0 0 7 remote file include vulnerability url:http://www. wolvez. org/forum/redirect. php? tid=1 8 2&goto=lastpost This vulnerability is a more common variable coverage holes, where the transfer is due to the discovery of this vulnerability if it is a white box that you want to have a...

0.1AI score

Exploits0

seebug.org•added 2008/07/12 12:0 a.m.•15 views

Phpcms 2007 common.inc.php远程文件包含漏洞

该cms的核心配置文件/include/common.inc.php有缺陷 -------------------------------------------- //23行开始 @extract$POST, EXTROVERWRITE; @extract$GET, EXTROVERWRITE; unset$POST, $GET; ------------------------------------------------ 这里extract函数会导致变量覆盖，可能引发一系列的问题...

7.1AI score

Exploits0

seebug.org•added 2008/03/09 12:0 a.m.•21 views

phpcms injection 0day

：/formguide/include/tag.func.php ------------灰常淫荡的分割线------------------------------------------------------- global $db,$MOD,$MODULE; $formid = !isset$formid||$formid=='' ? 0 : $formid; $query = "SELECT FROM ".TABLEFORMGUIDE." WHERE formid=$formid limit 1"; $r = $db-getone$query; if!$r echo...

7.1AI score

Exploits0

NVD•added 2008/01/31 8:0 p.m.•11 views

CVE-2008-0513

Directory traversal vulnerability in parser/include/class.cachephpcms.php in phpCMS 1.2.2 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter to parser/parser.php, as demonstrated by a filename ending with %00.gif, a different vector than CVE-2005-1840...

7.8CVSS6.6AI score0.07486EPSS

Exploits1References7

Prion•added 2008/01/31 8:0 p.m.•7 views

Directory traversal

7.8CVSS6.9AI score0.07486EPSS

Exploits1References7Affected Software1

CVE•added 2008/01/31 7:30 p.m.•43 views

CVE-2008-0513

CVE-2008-0513 describes a directory traversal in phpCMS 1.2.2. The vulnerability affects the parser/include/class.cache_phpcms.php and parser/parser.php, allowing remote attackers to read arbitrary files by supplying a path with .. in the file parameter; a proof example notes a filename ending wi...

7.8CVSS6.6AI score0.07486EPSS

Exploits1References7Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by