EUVD-2009-4287

Malware in sbrugna...

EUVD-2006-6784

Malware in sbrugna...

EUVD-2006-6026

Malware in sbrugna...

EUVD-2007-0896

Malware in sbrugna...

EUVD-2008-1697

Malware in sbrugna...

CVE-2006-4525

Cross-site scripting XSS vulnerability in CubeCart 3.0.12 and earlier, when registerglobals is enabled, allows remote attackers to inject arbitrary web script or HTML via the links array...

CVE-2008-5587

Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when registerglobals is enabled, allows remote attackers to read arbitrary files via a .. dot dot in the language parameter to index.php...

PT-2006-5643 · Telekorn · Telekorn Signkorn Guestbook

Name of the Vulnerable Software and Affected Versions: Telekorn SignKorn Guestbook SL versions 1.3 and earlier Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the dir path parameter in multiple PHP files, including "index.php", "includes/functions.gb.php"...

security flaw

The RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when registerglobals is enabled, allows remote attackers to modify the GLOBALS array and bypass security protections of PHP applications via a multipart/form-data POST request with a "GLOBALS" fileupload field...

[waraxe-2004-SA#034 - XSS and path full path disclosure in PhpBB 2.0.8]

================================================================================ waraxe-2004-SA034 ================================================================================ XSS and full path disclosure in PhpBB 2.0.8...

CVE-2001-1370

prepend.php3 in PHPLib before 7.2d, when registerglobals is enabled for PHP, allows remote attackers to execute arbitrary scripts via an HTTP request that modifies $PHPLIBlibdir to point to malicious code on another server, as seen in Horde 1.2.5 and earlier, IMP before 2.2.6, and other packages...