11 matches found
EUVD-2008-3498
Malware in sbrugna...
EUVD-2007-5538
Malware in sbrugna...
EUVD-2006-2905
Malware in sbrugna...
EUVD-2013-4416
Malware in sbrugna...
EUVD-2002-2162
Malware in sbrugna...
CVE-2020-5553
mailform version 1.04 allows remote attackers to execute arbitrary PHP code via unspecified vectors...
CVE-2020-22201
phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize parameter to yp/product.php...
phpMyAdmin Code Injection vulnerability
phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 does not properly choose delimiters to prevent use of the pregreplace e aka eval modifier, which might allow remote attackers to execute arbitrary PHP code via a crafted string, as demonstrated by the table...
Code injection
HelpDEZk 1.1.1 has CSRF in admin/home/logos/ with an impact of remote execution of arbitrary PHP code...
CVE-2012-5293
Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3 Stable allow remote attackers to execute arbitrary PHP code via a URL in the 1 GLOBALSrootpath parameter to usr/extensions/gettree.inc.php or 2 rootpath parameter to usr/extensions/getinfochannel.inc.php...
CVE-2006-4904
Dynamic variable evaluation vulnerability in cmpi.php in Qualiteam X-Cart 4.1.3 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code, as demonstrated by PHP remote file inclusion via the xcartdir parameter...