34 matches found
EUVD-2007-4214
Malware in sbrugna...
EUVD-2007-4078
Malware in sbrugna...
EUVD-2011-3736
Malware in sbrugna...
CVE-2011-3779
PhpHostBot 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/createacct.php and certain other files...
IDevSpot PHPHostBot 1.0 Index.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19084/info PHPHostBot is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious...
PhpHostBot <= 1.06 (svr_rootscript) Remote File Inclusion Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV83$2007 ----------------------------------------------------------------------------------------- ECHOADV83$2007 PhpHostBot = 1.06 svrrootscript Remote File Inclusion...
PhpHostBot 1.05 Authorize.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25073/info PhpHostBot is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the...
CVE-2011-3779
PhpHostBot 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/createacct.php and certain other files...
Information disclosure
PhpHostBot 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/createacct.php and certain other files...
CVE-2011-3779
PhpHostBot 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/createacct.php and certain other files...
CVE-2011-3779
CVE-2011-3779 affects PhpHostBot 2.0. Affected: PhpHostBot 2.0 installations where direct requests to certain .php files (e.g., admin/create_acct.php) reveal the installation path in an error message, enabling information disclosure. Impact is limited to partial confidentiality exposure; no explo...
PhpHostBot Login.PHP远程文件包含漏洞
PhpHostBot是一款基于PHP的WEB应用程序。 PhpHostBot不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以应用程序进程权限执行任意命令。 问题是由于'Login.PHP'脚本对用户提交的'svrrootscript'参数缺少过滤,提交远程服务器上的任意PHP文件作为包含对象,可导致以WEB权限执行任意PHP代码。 PhpHostBot 1.06 目前没有解决方案提供: http://www.idevspot.com/PhpHostBot.php...
[ECHO_ADV_83$2007] PhpHostBot <= 1.06 (svr_rootscript) Remote File Inclusion Vulnerability
ECHOADV83$2007 ----------------------------------------------------------------------------------------- ECHOADV83$2007 PhpHostBot = 1.06 svrrootscript Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...
adv83-K-159-2007.txt
ECHOADV83$2007 ----------------------------------------------------------------------------------------- ECHOADV83$2007 PhpHostBot = 1.06 svrrootscript Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...
CVE-2007-4231
PHP remote file inclusion vulnerability in order/login.php in IDevSpot PhpHostBot 1.06 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the svrrootscript parameter, a different vector than CVE-2007-4094 and CVE-2006-3776...
Remote file inclusion
PHP remote file inclusion vulnerability in order/login.php in IDevSpot PhpHostBot 1.06 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the svrrootscript parameter, a different vector than CVE-2007-4094 and CVE-2006-3776...
CVE-2007-4231
CVE-2007-4231 describes a PHP remote file inclusion in the IDevSpot PhpHostBot line (1.06 and earlier). The vulnerability is triggered in order/login.php via a URL parameter (svr_rootscript), allowing an attacker to execute arbitrary PHP code on affected installations. The entry notes this as a d...
CVE-2007-4231
PHP remote file inclusion vulnerability in order/login.php in IDevSpot PhpHostBot 1.06 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the svrrootscript parameter, a different vector than CVE-2007-4094 and CVE-2006-3776...
PhpHostBot <= 1.06 (svr_rootscript) Remote File Inclusion Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV83$2007 ----------------------------------------------------------------------------------------- ECHOADV83$2007 PhpHostBot = 1.06 svrrootscript Remote File Inclusion...
PhpHostBot <= 1.06 (svr_rootscript) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ======================================================================= PhpHostBot = 1.06 svrrootscript Remote File Inclusion Vulnerability ======================================================================= \ /\ \ / | \ \ | / \ // /...