CVE-2026-7212

CVE-2026-7212 affects the edvardlindelof notes-mcp project up to version 0.1.4, specifically via an issue in the notes_mcp.py file where manipulation of the arguments root_dir or path enables a path traversal vulnerability. The vulnerability is exploitable remotely and, according to the provided ...

EUVD-2009-4193

Malware in sbrugna...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in SweetRice 0.5.4, 0.5.3, and earlier allow remote attackers to execute arbitrary PHP code via a URL in the rootdir parameter to 1 plugin/subscriber/inc/post.php and 2 as/lib/newsmodify.php...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Softnews Media Group DataLife Engine allow remote attackers to execute arbitrary PHP code via a URL in the rootdir parameter to 1 init.php and 2 Ajax/editnews.php. NOTE: some of these details are obtained from third party information...

CVE-2005-4593

PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary code via a URL in the 1 FORUMLIB parameter in Documentation/tests/bug-559668.php and 2 the rootdir parameter in docbuilder/filedialog.php...

CVE-2005-4593

PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary code via a URL in the 1 FORUMLIB parameter in Documentation/tests/bug-559668.php and 2 the rootdir parameter in docbuilder/filedialog.php...