Invision Gallery 2.0.7 - readfile() SQL Injection

Invision Gallery 2.0.7 - readfile SQL Injection / | || || | | |/ / | || | | / - | | ' 2.0.7 ReadFile & SQL injection exploit +-------------+ | Uzage: | +-------------+ + ReadFile: - syntax: readfile 1 readfile 2 // try it if readfile1 failed ; - params: - path to local file ../file, for example:...

Invision Gallery <= 2.0.7 ReadFile() & SQL Injection Exploit

No description provided by source. / | || || | | |/ / | || | | / - | | ' | ' | / | ' \ - |||||||\|||, |||// hellknights.void.ru |/ coded by 1nf3ct0r Invision Gallery = 2.0.7 ReadFile & SQL injection exploit +-------------+ | Uzage: | +-------------+ + ReadFile: - syntax: readfile 1 host...

CVE-2006-4905

PHP remote file inclusion vulnerability in index.php in Artmedic Links 5.0 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter, which is processed by the readfile function...

CVE-2006-4554

CVE-2006-4554 is a stack-based buffer overflow in BeCubed Compression Plus (ZOO-processing exports ReadFile) that allows arbitrary code execution via an inconsistent size parameter in a ZOO file header. Affected products include BeCubed Compression Plus prior to 5.0.1.28, and related suites such ...

CVE-2006-4554

Stack-based buffer overflow in the ReadFile function in the ZOO-processing exports in the BeCubed Compression Plus before 5.0.1.28, as used in products including 1 Tumbleweed EMF, 2 VCOM/Ontrack PowerDesk Pro, 3 Canyon Drag and Zip, 4 Canyon Power File, and 5 Canyon Power File Gold, allow...

Compression Plus and Tumbleweed EMF Stack Overflow Security Advisory

Compression Plus and Tumbleweed EMF Stack Overflow Security Advisory Summary The Compression Plus library is designed to handle de/compression of popular archiving formats such as ARC, ARK, PAK, ARJ, CAB, GZ, LBR, TAR, TAZ, TGZ, Z, ZIP, and ZOO. The code fails to properly validate input while...

FreeBSD : horde -- 'url' disclosure of sensitive information vulnerability (c7c09579-b466-11da-82d0-0050bf27ba24)

Secunia advisory SA19246 : Paul Craig has discovered a vulnerability in Horde, which can be exploited by malicious people to disclose sensitive information. Input passed to the 'url' parameter in 'services/go.php' isn't properly verified, before it is used in a 'readfile' call. This can be...

DEBIAN-CVE-2005-4470

Heap-based buffer overflow in the getbhead function in readfile.c in Blender BlenLoader 2.0 through 2.40pre allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a .blend file with a negative bhead.len value, which causes less memory to be...

FreeBSD : php -- readfile() DoS vulnerability (07f3fe15-a9de-11d9-a788-0001020eed82)

A SUSE Security advisory reports : A bug in the readfile function of php4 could be used to to crash the httpd running the php4 code when accessing files with a multiple of the architectures page size leading to a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

CVE-2005-0596

PHP 4 PHP4 allows attackers to cause a denial of service daemon crash by using the readfile function on a file whose size is a multiple of the page size...

CVE-2005-0596

PHP 4 PHP4 allows attackers to cause a denial of service daemon crash by using the readfile function on a file whose size is a multiple of the page size...

CVE-2005-0596

PHP 4 PHP4 allows attackers to cause a denial of service daemon crash by using the readfile function on a file whose size is a multiple of the page size...

CVE-2005-0596

Consolidated details from connected sources confirm CVE-2005-0596 affects PHP 4’s readfile() function. The underlying issue is that reading a file whose size is a multiple of the system page size can crash the httpd/daemon, yielding a denial-of-service condition. The vulnerability is described as...

php -- readfile() DoS vulnerability

A SUSE Security advisory reports: A bug in the readfile function of php4 could be used to to crash the httpd running the php4 code when accessing files with a multiple of the architectures page size leading to a denial of service...