42 matches found
EUVD-2005-0864
Malware in sbrugna...
EUVD-2005-2546
Malware in sbrugna...
ADODB < 4.70 (PhpOpenChat 3.0.x) Server.php SQL Injection Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo PhpOpenChat 3.0.x ADODB Server.php \sql\ SQL injection\r\n; echo by rgod [email protected]\r\n; echo site: http://retrogod.altervista.org\r\n\r\n; echo dork: Welcome to your PHPOpenChat-Installation!\r\n\r\n; if $argc4...
PHPOpenChat 3.0.1 - Multiple HTML Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12841/info PHPOpenChat is reportedly affected by multiple remote HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in dynamically...
PHPOpenChat 2.3.4/3.0.1 PoC.php Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/12817/info PHPOpenChat is prone to multiple remote file-include vulnerabilities. An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the privileges of the...
PHPOpenChat 2.3.4/3.0.1 ENGLISH_poc.php Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/12817/info PHPOpenChat is prone to multiple remote file-include vulnerabilities. An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the privileges of the...
PHPOpenChat 2.3.4/3.0.1 PoC_loginform.php phpbb_root_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/12817/info PHPOpenChat is prone to multiple remote file-include vulnerabilities. An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the privileges of the...
PHPOPENCHAT 3.0.2 - Cross-Site Scripting ANDOR FPD
PHPOPENCHAT 3.0.2 - Cross-Site Scripting ANDOR FPD The PoC: 1.- Preview This web APP is Vulnerable to xss in its instalation file but you can misconfigurate all the code with this bug also, you must see to understand... 2.- Vulnerable Code function databasesetup if isset$POST'formdata' $host =...
PHPOPENCHAT 3.0.2 - Cross-Site Scripting AND/OR FPD
The PoC: 1.- Preview This web APP is Vulnerable to xss in its instalation file but you can misconfigurate all the code with this bug also, you must see to understand... 2.- Vulnerable Code function databasesetup if isset$POST'formdata' $host = string $POST'DATABASEHOST'; $user = string...
action-rfi.txt
-------------------------------------------------- ActionPoll Script actionpoll.php Remote File Include -------------------------------------------------- Author : SekoMirza Date Found : April 14 2007 Location : French // ... Critical Lvl : critical Impact : System access Where : From Remote...
poc301-rfi.txt
-------------------------------------------------- PhpOpenChat = 3.0.1 poc.php Multiple Remote File Include Vulnerabilities -------------------------------------------------- Author : SekoMirza Date Found : Nisan 11 2007 Location : Fransa // ... Critical Lvl : Highly critical Impact : System acce...
PhpOpenChat <= 3.0.1 (poc.php) Multiple Remote File Include Vulnerabilities
-------------------------------------------------- PhpOpenChat = 3.0.1 poc.php Multiple Remote File Include Vulnerabilities -------------------------------------------------- Author : SekoMirza Date Found : Nisan 11 2007 Location : Fransa // ... Critical Lvl : Highly critical Impact : System acce...
CVE-2006-4677
Technical details for CVE-2006-4677 are not publicly provided in the supplied documents. No confirmed affected product/version, root cause, or remediation are present here. Monitor for updates from primary sources.
PT-2006-5462 · Phpopenchat · Phpopenchat
Name of the Vulnerable Software and Affected Versions: phpopenchat versions prior to 3.0.2 Description: The issue allows remote attackers to execute arbitrary PHP code via the sourcedir parameter in the contrib/yabbse/poc.php file. A dispute regarding this issue was raised by a third-party...
phpopenchat30.txt
World Defacers Team --------------------Summary---------------- eVuln ID: WD23 Vendor: phpopenchat-3.0. Vendor's Web Site: http://phpopenchat.org Class: Remote PoC/Exploit: Available Solution: Not Available Discovered by: rUnViRuS wdzone.net & worlddefacers.de...
WDT :-phpopenchat-3.0.* ($sourcedir) Remote File Inclusion Exploit
World Defacers Team --------------------Summary---------------- eVuln ID: WD23 Vendor: phpopenchat-3.0. Vendor's Web Site: http://phpopenchat.org Class: Remote PoC/Exploit: Available Solution: Not Available Discovered by: rUnViRuS wdzone.net & worlddefacers.de...
PhpOpenChat3.0.xADODB.txt
!/usr/bin/php -q -d shortopentag=on ? echo "PhpOpenChat 3.0.x ADODB Server.php "sql" SQL injection\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: Welcome to your PHPOpenChat-Installation!\r\n\r\n"; if $argc4 echo "Usage: php...
ADODB < 4.70 (PhpOpenChat 3.0.x) Server.php SQL Injection Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "PhpOpenChat 3.0.x ADODB Server.php "sql" SQL injection\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: Welcome to your PHPOpenChat-Installation!\r\n\r\n";...
ADODB < 4.70 (PhpOpenChat 3.0.x) Server.php SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================= ADODB 4.70 PhpOpenChat 3.0.x Server.php SQL Injection Exploit ================================================================= !/usr/bin/php -q -d shortopentag=on ? echo...
Design/Logic Flaw
Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including 1 Mantis, 2 PostNuke, 3 Moodle, 4 Cacti, 5 Xaraya, 6 PhpOpenChat, possibly 7 MAXdev MD-Pro, and 8 Simplog, allows remote attackers to execute arbitrary PHP...