Information disclosure

PhpGedView 4.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by serviceClientTest.php and certain other files...

CVE-2011-3778

PhpGedView 4.2.3 is vulnerable to an information-disclosure flaw where a direct request to certain .php files causes an error message that exposes the installation path. This affects the PHP files referenced in the description (e.g., serviceClientTest.php and similar) and can reveal sensitive pat...

CVE-2011-3778

PhpGedView 4.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by serviceClientTest.php and certain other files...

PhpGedView module.php pgvaction Parameter Traversal Local File Inclusion

The web server hosts PhpGedView, a web-based real estate listing management application written in PHP. The version of PhpGedView installed on the remote host fails to sanitize user input to the 'pgvaction' parameter of the 'module.php' script before using it to include PHP code. Regardless of...

PhpGedView Detection

The remote web server hosts PhpGedView, an open source genealogy program written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid51456; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"PhpGedView...

CVE-2011-0405

Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the pgvaction parameter...

CVE-2011-0405

Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the pgvaction parameter...

Directory traversal

Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the pgvaction parameter...

CVE-2011-0405

Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the pgvaction parameter...

CVE-2011-0405

CVE-2011-0405 describes a directory traversal and local file inclusion vulnerability in PhpGedView. The issue occurs in module.php via the pgvaction parameter when magic_quotes_gpc is disabled, allowing an unauthenticated, remote attacker to read arbitrary files and possibly execute PHP code on t...

PhpGedView <= 4.2.3 Local File Inclusion Vulnerability

Exploit for php platform in category web applications !/usr/bin/perl -w :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com PhpGedView = 4.2.3 Local File Inclusion Vulnerability...

PhpGedView 4.2.3 - Local File Inclusion

PhpGedView 4.2.3 - Local File Inclusion !/usr/bin/perl -w :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com PhpGedView = 4.2.3 Local File Inclusion Vulnerability Script:...

PhpGedView 4.2.3 - Local File Inclusion

!/usr/bin/perl -w :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com PhpGedView = 4.2.3 Local File Inclusion Vulnerability Script: "PhpGedView is a revolutionary genealogy program...

PhpGedView 4.2.3 Local File Inclusion

!/usr/bin/perl -w :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com PhpGedView = 4.2.3 Local File Inclusion Vulnerability Script: "PhpGedView is a revolutionary genealogy program...

Debian Security Advisory DSA 1580-1 (phpgedview)

The remote host is missing an update to phpgedview announced via advisory DSA 1580-1. OpenVAS Vulnerability Test $Id: deb15801.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1580-1 phpgedview Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Debian: Security Advisory (DSA-1580-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-1580-1 : phpgedview - programming error

It was discovered that phpGedView, an application to provide online access to genealogical data, allowed remote attackers to gain administrator privileges due to a programming error. Note: this problem was a fundamental design flaw in the interface API to connect phpGedView with external programs...

[SECURITY] [DSA 1580-1] New phpgedview packages fix privilege escalation

------------------------------------------------------------------------ Debian Security Advisory DSA-1580-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 20, 2008 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1580-1] New phpgedview packages fix privilege escalation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1580-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 20, 2008 http://www.debian.org/security/faq -...

DSA-1580-1 phpgedview - privilege escalation

Bulletin has no description...