65 matches found
CVE-2006-6419
jce.php in the JCE Admin Component in Ryan Demmer Joomla Content Editor JCE 1.1.0 beta 2 and earlier for Joomla! comjce allows remote attackers to include and possibly execute arbitrary local files via the 1 plugin or 2 file parameter. NOTE: The provenance of this information is unknown; the...
CVE-2006-0494
Directory traversal vulnerability in MyBB aka MyBulletinBoard 1.02 allows local users with MyBB administrative privileges to include and possibly execute arbitrary local files via directory traversal sequences and a nul %00 character in the plugin parameter...
Directory traversal
Directory traversal vulnerability in MyBB aka MyBulletinBoard 1.02 allows local users with MyBB administrative privileges to include and possibly execute arbitrary local files via directory traversal sequences and a nul %00 character in the plugin parameter...
CVE-2005-0571
adminloader.php in PunBB 1.2.1 allows remote attackers to read arbitrary files via the plugin parameter...
CVE-2002-0306
ans.pl in Avenger's News System ANS 2.11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the p plugin parameter...