25 matches found
PT-2007-4088
Name of the Vulnerable Software and Affected Versions SunLight CMS version 5.3 Description The issue allows remote attackers to execute arbitrary PHP code. This can be achieved by providing a URL in the root parameter to specific PHP files, such as connect.php or modules/startup.php...
CVE-2007-2095
PHP remote file inclusion vulnerability in chat.php in MySpeach 1.9 allows remote attackers to execute arbitrary PHP code via a URL in the myroot parameter, a different vector than CVE-2007-0498...
PT-2006-3431 · Squirrelcart · Squirrelcart
Name of the Vulnerable Software and Affected Versions: Squirrelcart versions 2.2.2 and earlier Description: A remote file inclusion issue allows attackers to execute arbitrary PHP code via a URL in the cart isp root parameter in the cart content.php file. Recommendations: For Squirrelcart version...
PT-2006-2739 · Vwar · Virtual War
PHP remote file inclusion vulnerability in Virtual War VWar 1.5.0 allows remote attackers to execute arbitrary PHP code via a URL in the vwar root parameter to 1 admin/admin.php, 2 war.php, 3 stats.php, 4 news.php, 5 joinus.php, 6 challenge.php, 7 calendar.php, 8 member.php, 9 popup.php, and othe...
CVE-2005-4462
PHP remote file include vulnerability in usermods.php in Tolva PHP website system 0.1.0 allows remote attackers to execute arbitrary code via a URL in the ROOT parameter...