EUVD-2006-5295

Malware in sbrugna...

phpMyConferences <= 8.0.2 (menu.inc.php) File Include Vulnerability

No description provided by source. phpMyConferences = 8.0.2 Remote File Inclusion Download Source : http://sedre.loria.fr/phpMyConference/phpMyConferences8.0.2.zip Found By : k1tk4t - k1tk4t4tnewhack.org Location : Indonesia -- newhackdotorg file ; menus.inc.php bugs ;...

CVE-2007-5811

Directory traversal vulnerability in PageTraiteDownload.php in phpMyConferences 8.0.2 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the dir parameter. NOTE: this issue is disputed for 8.0.2 by a reliable third party, who notes that the PHP code is syntactically...

Directory traversal

Directory traversal vulnerability in PageTraiteDownload.php in phpMyConferences 8.0.2 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the dir parameter. NOTE: this issue is disputed for 8.0.2 by a reliable third party, who notes that the PHP code is syntactically...

CVE-2007-5811

CVE-2007-5811 affects phpMyConferences up to version 8.0.2, specifically the PageTraiteDownload.php component. The vulnerability is a directory traversal via the dir parameter (..), allowing reads of arbitrary files. The issue is disputed for 8.0.2 by a third party who notes the PHP code may be s...

PT-2007-6775 · Phpmyadmin · Phpmyconferences

Name of the Vulnerable Software and Affected Versions: phpMyConferences versions 8.0.2 and earlier Description: A directory traversal issue in PageTraiteDownload.php allows remote attackers to read arbitrary files via a .. dot dot in the dir parameter. This issue is disputed for version 8.0.2 by ...

CVE-2006-5678

PHP remote file inclusion vulnerability in common/visiteurs/include/library.inc.php in J-Pierre DEZELUS Les Visiteurs 2.0.1, as used in phpMyConferences phpMyConference 8.0.2 and possibly other products, allows remote attackers to execute arbitrary PHP code via a URL in the lvcmodulesdir paramete...

CVE-2006-5678

CVE-2006-5678 describes a PHP remote file inclusion in common/visiteurs/include/library.inc.php used by J-Pierre DEZELUS Les Visiteurs 2.0.1 (and phpMyConferences 8.0.2). The vulnerability would allow arbitrary PHP code execution via a URL in the lvc_modules_dir parameter. NOTE: CVE states that t...

phpMyConferences &lt;= 8.0.2 Remote File Inclusion

phpMyConferences = 8.0.2 Remote File Inclusion Found by mfp.c = [email protected] brazil rlz Greetz: F-117, Silver lords e pra tu pri : Arquivo: library.inc.php Bug: if !$gloadedmodules$imagename include$lvcmodulesdir.'/'.$modulename.'.module.php'; $gloadedmodules$modulename = true; Exploit:...

phpMyConferences-8.0.2-2.txt

phpMyConferences [email protected] brazil rlz Greetz: F-117, Silver lords e pra tu pri : Arquivo: library.inc.php Bug: if !$gloadedmodules$imagename include$lvcmodulesdir.'/'.$modulename.'.module.php'; $gloadedmodules$modulename = true; Exploit:...

PHPMyConferences 8.0.2 - &#039;Init.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/20741/info phpMyConference is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to compromise the application and the underlying system; other attacks a...

CVE-2006-5310

CVE-2006-5310 is a PHP remote file inclusion vulnerability in the phpMyConferences/Less Visiteurs stack. The flaw exists in common/visiteurs/include/menus.inc.php used by J-Pierre Dezel... Les Visiteurs 2.0.1 and, in turn, by phpMyConferences 8.0.2 (and possibly other products). An attacker can s...

phpMyConferences menus.inc.php lvc_include_dir Parameter Remote File Inclusion

The remote host is using phpMyConferences, a conference management system written in PHP. The version of phpMyConferences installed on the remote host fails to sanitize input to the 'lvcincludedir' parameter before using it to include PHP code in the 'common/visiteurs/include/menus.inc.php' scrip...

PHPMyConferences 8.0.2 - &#039;menu.inc.php&#039; File Inclusion

phpMyConferences = 8.0.2 Remote File Inclusion Download Source : http://sedre.loria.fr/phpMyConference/phpMyConferences8.0.2.zip Found By : k1tk4t - k1tk4t4tnewhack.org Location : Indonesia -- newhackdotorg file ; menus.inc.php bugs ; include$lvcincludedir.'/menus-'.$view.'.inc.php';...

phpMyConferences &lt;= 8.0.2 (menu.inc.php) File Include Vulnerability

No description provided by source. phpMyConferences = 8.0.2 Remote File Inclusion Download Source : http://sedre.loria.fr/phpMyConference/phpMyConferences8.0.2.zip Found By : k1tk4t - k1tk4t4tnewhack.org Location : Indonesia -- newhackdotorg file ; menus.inc.php bugs ;...

PHPMyConferences 8.0.2 - menu.inc.php File Inclusion

PHPMyConferences 8.0.2 - menu.inc.php File Inclusion phpMyConferences = 8.0.2 Remote File Inclusion Download Source : http://sedre.loria.fr/phpMyConference/phpMyConferences8.0.2.zip Found By : k1tk4t - k1tk4t4tnewhack.org Location : Indonesia -- newhackdotorg file ; menus.inc.php bugs ;...

phpMyConferences &lt;= 8.0.2 Remote File Inclusion

ToXiC Cdsagenda 4.2.9 Remote File Inclusion by ToXiC CreW ToXic Security Italian CreW BuG FounD by Drago84 Application Affect: Cdsagenda 4.2.9 Sorce Code: http://cdsware.cern.ch/cdsagenda/download/cdsagenda-4.2.9.tar.gz Page: SendAlertEmail.php Dir : /cdsagenda-4.2.9/htdocs/modification/ Problem:...

CVE-2003-1148

Multiple PHP remote file inclusion vulnerabilities in J-Pierre DEZELUS Les Visiteurs 2.0.1, as used in phpMyConferences phpMyConference 8.0.2 and possibly other products, allow remote attackers to execute arbitrary PHP code via a URL in the lvcincludedir parameter to 1 config.inc.php or 2...