15 matches found
EUVD-2006-2995
Malware in sbrugna...
EUVD-2006-3470
Malware in sbrugna...
free QBoard <= 1.1 (qb_path) Remote File Include Vulnerability
No description provided by source. $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ free QBoard qbpath = v.1.1 Remote File Include Vulnerability $$ script site: http://sourceforge.net/projects/freeqboard/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $...
free QBoard 1.1 index.php qb_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18788/info The free QBoard script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...
Free QBoard qb_path远程文件包含漏洞
BUGTRAQ ID: 18788 Free Qboard是高级的开放源码留言簿服务。 Free Qboard的多个模块中存在远程文件包含漏洞,远程攻击者可能利用此漏洞在服务器上执行任意命令。 具体漏洞代码如下: ---------------------- 1- index.php include $qbpath."incs/mysql.php"; include $qbpath."incs/crypt.php"; ---------------------------------- 2- about.php include $qbpath."incs/header.php";...
CVE-2006-3475
Multiple PHP remote file inclusion vulnerabilities in free QBoard 1.1 allow remote attackers to execute arbitrary PHP code via a URL in the qbpath parameter to 1 index.php, 2 about.php, 3 contact.php, 4 delete.php, 5 faq.php, 6 features.php or 7 history.php, a different set of vectors than...
CVE-2006-3475
Multiple PHP remote file inclusion vulnerabilities in free QBoard 1.1 allow remote attackers to execute arbitrary PHP code via a URL in the qbpath parameter to 1 index.php, 2 about.php, 3 contact.php, 4 delete.php, 5 faq.php, 6 features.php or 7 history.php, a different set of vectors than...
CVE-2006-3475
CVE-2006-3475 involves multiple PHP remote file inclusion vulnerabilities in free QBoard 1.1 and earlier, allowing remote attackers to execute arbitrary PHP code via a URL in the qb_path parameter when accessing pages such as index.php, about.php, contact.php, delete.php, faq.php, features.php, o...
QBoard11.txt
free QBoard v1.1 Multiple Remote File include ------------------------------------------------- Discovered By CrAshoVeRrIdE Arabian Security Team ------------------------------------------------- site of script:http://sourceforge.net/projects/freeqboard/...
free QBoard v1.1 Multiple Remote File include
free QBoard v1.1 Multiple Remote File include ------------------------------------------------- Discovered By CrAshoVeRrIdE Arabian Security Team ------------------------------------------------- site of script:http://sourceforge.net/projects/freeqboard/...
free QBoard 1.1 - 'index.php?qb_path' Remote File Inclusion
source: https://www.securityfocus.com/bid/18788/info The free QBoard script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing malicious PHP code and...
CVE-2006-2998
CVE-2006-2998 concerns a PHP remote file inclusion in the free QBoard 1.1 and earlier. The vulnerability resides in board/post.php, where an attacker can cause the application to include a remote PHP file by supplying a URL in the qb_path parameter, enabling arbitrary PHP code execution on affect...
free QBoard (qb_path) <= v.1.1 Remote File Include Vulnerability
$$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ free QBoard qbpath = v.1.1 Remote File Include Vulnerability $$ script site: http://sourceforge.net/projects/freeqboard/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ Find by: Kacper a.k.a Rahim $$ $$...
free QBoard 1.1 - 'qb_path' Remote File Inclusion
$$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ free QBoard qbpath = v.1.1 Remote File Include Vulnerability $$ script site: http://sourceforge.net/projects/freeqboard/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ Find by: Kacper a.k.a Rahim $$ $$...
free QBoard 1.1 - qb_path Remote File Inclusion
free QBoard 1.1 - qbpath Remote File Inclusion $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ free QBoard qbpath = v.1.1 Remote File Include Vulnerability $$ script site: http://sourceforge.net/projects/freeqboard/ $$...