8 matches found
PHP GLOBALS Remote File Inclusion (CVE-2006-4966)
A Remote File Inclusion vulnerability has been reported in chumpsoft phpQuestionnaire. The vulnerability is due to lack of sanitization for user-supplied data. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system. This...
PHPQuestionnaire Ifunction.PHP远程文件包含漏洞
PHPQuestionnaire是一款基于PHP的web管理程序。 PHPQuestionnaire不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Ifunction.PHP'脚本对用户提交的‘GLOBALSphpQRootDir'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Chumpsoft phpQuestionnaire 3.12 http://www.chumpsoft.com/products/phpq/...
phpQuestionnaire3.12.txt
SolpotCrew Community phpQuestionnaire 3.12 GLOBALSphpQRootDir Remote File Inclusion vendor : http://http://www.chumpsoft.com/products/phpq/ Bug Found By :Solpot a.k.a k. Hasibuan 21-09-2006 contact: [email protected] Website : http://www.nyubicrew.org/adv/solpot-adv-08.txt Greetz: choi ,...
CVE-2006-4966
PHP remote file inclusion vulnerability in inc/ifunctions.php in chumpsoft phpQuestionnaire phpQ 3.12 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALSphpQRootDir parameter...
CVE-2006-4966
The CVE-2006-4966 issue affects chumpsoft phpQuestionnaire (phpQ) 3.12, where PHP remote file inclusion is possible via a URL supplied to GLOBALS[phpQRootDir] in inc/ifunctions.php. The underlying root cause is insufficient sanitization of user-supplied data, enabling an attacker to trigger remot...
phpQuestionnaire 3.12 (phpQRootDir) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ===================================================================== phpQuestionnaire 3.12 phpQRootDir Remote File Include Vulnerability ===================================================================== SolpotCrew Community...
phpQuestionnaire 3.12 - 'phpQRootDir' Remote File Inclusion
SolpotCrew Community phpQuestionnaire 3.12 GLOBALSphpQRootDir Remote File Inclusion vendor : http://www.chumpsoft.com/products/phpq/ Bug Found By :Solpot a.k.a k. Hasibuan 21-09-2006 contact: [email protected] Website : http://www.nyubicrew.org/adv/solpot-adv-08.txt Greetz: choi , h4ntu ,...
phpQuestionnaire 3.12 (phpQRootDir) Remote File Include Vulnerability
No description provided by source. SolpotCrew Community phpQuestionnaire 3.12 GLOBALSphpQRootDir Remote File Inclusion vendor : http://www.chumpsoft.com/products/phpq/ Bug Found By :Solpot a.k.a k. Hasibuan 21-09-2006 contact: [email protected] Website :...