14 matches found
RedBLoG 0.5 admin/config.php root_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/20115/info The redblog application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
RedBLoG 0.5 admin/index.php root_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/20115/info The redblog application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
RedBLoG 0.5 common.php root_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/20115/info The redblog application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
CVE-2006-5021
CVE-2006-5021 affects redgun RedBLoG 0.5. It enables remote PHP code execution via URL parameters (root in imgen.php; root_path in admin/config.php, common.php, admin/index.php). Root cause is multiple PHP remote file inclusion vulnerabilities. Impact per sources is high/critical. Affected softwa...
RedBLoG 0.5 - common.php?root_path Remote File Inclusion
RedBLoG 0.5 - common.php?rootpath Remote File Inclusion source: https://www.securityfocus.com/bid/20115/info The redblog application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker...
RedBLoG 0.5 - adminconfig.php?root_path Remote File Inclusion
RedBLoG 0.5 - adminconfig.php?rootpath Remote File Inclusion source: https://www.securityfocus.com/bid/20115/info The redblog application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an...
RedBLoG 0.5 - 'imgen.php?Root' Remote File Inclusion
source: https://www.securityfocus.com/bid/20115/info The redblog application is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system...
CVE-2006-4366
PHP remote file inclusion vulnerability in index.php in RedBLoG 0.5 allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...
CVE-2006-4366
PHP remote file inclusion vulnerability in index.php in RedBLoG 0.5 allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...
CVE-2006-1140
SQL injection vulnerability in rss.php in RedBLoG 0.5 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
Sql injection
SQL injection vulnerability in rss.php in RedBLoG 0.5 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
CVE-2006-1140
The CVE describes a SQL injection in RedBLoG 0.5’s rss.php, exploitable via the cat_id parameter to allow remote execution of arbitrary SQL commands. Affected software: RedBLoG 0.5; vulnerability cause: unsanitized input leading to SQL injection. Impact per NVD: Partial confidentiality/integrity/...
CVE-2006-1140
SQL injection vulnerability in rss.php in RedBLoG 0.5 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
RedBLoG <= 0.5 (cat_id) Remote SQL Injection Exploit
No description provided by source. ? errorreportingEERROR; function xssinit if !extensionloaded'phpcurl' if !dl'curl.so' and !dl'phpcurl.so' and !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function xssheader echo...