21 matches found
PHPLib < 7.4 - SQL Injection Vulnerability
Exploit for php platform in category web applications PHPLib SQL Injection Vendor: PHPLib Product: PHPLib Version: newid=true; $this-name = $this-cookiename==""?$this-classname:$this-cookiename; if "" == $id $this-newid=false; switch $this-mode ca...
PHPLib 7.4 - SQL Injection
PHPLib 7.4 - SQL Injection PHPLib SQL Injection Vendor: PHPLib Product: PHPLib Version: newid=true; $this-name = $this-cookiename==""?$this-classname:$this-cookiename; if "" == $id $this-newid=false; switch $this-mode case "get": $id = isset$HTTPGETVARS$this-name ?...
PHPLib < 7.4 - SQL Injection
PHPLib SQL Injection Vendor: PHPLib Product: PHPLib Version: newid=true; $this-name = $this-cookiename==""?$this-classname:$this-cookiename; if "" == $id $this-newid=false; switch $this-mode case "get": $id = isset$HTTPGETVARS$this-name ?...
PHPLib Team PHPLIB 7.2 - Remote Script Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3079/info The PHP Base Library'PHPLIB' is a code library which provides support for session management in web applications. It is targeted to developers and is widely used in many web applications, so a strong possibility...
Debian Security Advisory DSA 073-1 (imp)
The remote host is missing an update to imp announced via advisory DSA 073-1. OpenVAS Vulnerability Test $Id: deb0731.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 073-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
telltarget <= 1.3.3 (tt_docroot) Remote File Inclusion Vulnerabilities
No description provided by source. telltarget CMS 1.3.3 = Multiple Remote File Inclusion Vulnerabilitie D.Script: http://www.telltargetcms.de/download/telltarget1.3.3.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.Com/cc Exploit:Path/phplib/siteconf.php?ordnertiefe=Shell...
telltarget 1.3.3 - tt_docroot Remote File Inclusion
telltarget 1.3.3 - ttdocroot Remote File Inclusion telltarget CMS 1.3.3 = Multiple Remote File Inclusion Vulnerabilitie D.Script: http://www.telltargetcms.de/download/telltarget1.3.3.zip Discovered by: GolDM = Mahmoodali Homepage: http://www.Tryag.Com/cc...
CVE-2006-5027
Jeroen Vennegoor JevonCMS, possibly pre alpha, allows remote attackers to obtain sensitive information via a direct request for php/main/phplib files 1 dbmsql.inc, 2 dbmssql.inc, 3 dbmysql.inc, 4 dboci8.inc, 5 dbodbc.inc, 6 dboracle.inc, and 7 dbpgsql.inc; and 8 dbsybase.inc, which reveals the pa...
jevoncms (.inc) Path Disclosure
jevoncms .inc Path Disclosure Affected Software .: jevoncms download..: http://sourceforge.net/project/showfiles.php?groupid=91794 Class .............: Path Disclosure Risk ..............: high Found by ..........: CvIr.System Contact ...........: CvIr.Systematgmail.com Affected File:...
CVE-2006-2826
PHPLib (PHP Base Library)
CVE-2006-0887
PHPLib (PHP Base Library)
[SA16902] PHPLIB Unspecified Code Execution Vulnerability
TITLE: PHPLIB Unspecified Code Execution Vulnerability SECUNIA ADVISORY ID: SA16902 VERIFY ADVISORY: http://secunia.com/advisories/16902/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: PHPLIB 7.x http://secunia.com/product/8300/ DESCRIPTION: A vulnerability has been...
Debian DSA-073-1 : imp - 3 remote exploits
The Horde team released version 2.2.6 of IMP a web-based IMAP mail program which fixes three security problems. Their release announcement describes them as follows : - A PHPLIB vulnerability allowed an attacker to provide a value for the array element $PHPLIBlibdir, and thus to get scripts from...
CVE-2001-1370
prepend.php3 in PHPLib before 7.2d, when registerglobals is enabled for PHP, allows remote attackers to execute arbitrary scripts via an HTTP request that modifies $PHPLIBlibdir to point to malicious code on another server, as seen in Horde 1.2.5 and earlier, IMP before 2.2.6, and other packages...
CVE-2001-1370
CVE-2001-1370 affects PHPLib before 7.2d when register_globals is on, allowing remote code execution by sending an HTTP request that overwrites $_PHPLIB[libdir] to load code from another server. The issue is observed in Horde 1.2.5 and earlier, and in IMP before 2.2.6. Debian’s DSA-073-1 referenc...
[SECURITY] [DSA-073-1] 3 security problems in imp
Package : imp Problem type : 3 remote exploits Debian-specific: no The Horde team released version 2.2.6 of IMP a web based IMAP mail program which fixes three security problems. Their release announcement describes them as follows: 1. A PHPLIB vulnerability allowed an attacker to provide a value...
[SEC] Hole in PHPLib 7.2 prepend.php3
The PHPLib Team announces phplib-7.2d, availible now. This release fixes the recently discovered hole in prepend.php3 that can allow a remote attacker to inject non-local code into any phplib based script. Please note that this affects all applications that depend on PHPLib. Some apps have decide...
IMP 2.2.6 (SECURITY) released
The Horde team announces the availability of IMP 2.2.6, which fixes three potential security issues. We strongly recommend that all sites running IMP 2.2.x upgrade to this version. 1 A PHPLIB vulnerability allowed an attacker to provide a value for the array element $PHPLIBlibdir, and thus to get...
CVE-2001-1370
prepend.php3 in PHPLib before 7.2d, when registerglobals is enabled for PHP, allows remote attackers to execute arbitrary scripts via an HTTP request that modifies $PHPLIBlibdir to point to malicious code on another server, as seen in Horde 1.2.5 and earlier, IMP before 2.2.6, and other packages...
PHPLib Team PHPLIB 7.2 - Remote Script Execution
source: https://www.securityfocus.com/bid/3079/info The PHP Base Library'PHPLIB' is a code library which provides support for session management in web applications. It is targeted to developers and is widely used in many web applications, so a strong possibility exists that an application may be...