7 matches found
EUVD-2005-2687
Malware in sbrugna...
SaveWebPortal 3.4 - 'page' Remote File Inclusion
-------------------------------------------- SaveWebPortal -------------------------------------------- to inject succesfully you have to create a file called shell.html.txt or shell.php.txt otherwise it wont work! -------------------------------------------- Affected File: index.php =...
CVE-2005-2688
Multiple cross-site scripting XSS vulnerabilities in SaveWebPortal 3.4 allow remote attackers to inject arbitrary web script or HTML via a large number of parameters to 1 footer.php, 2 header.php, 3 menudx.php, or 4 menusx.php, or Javascript code in the 5 HTTPREFERER referer or 6 HTTPUSERAGENT us...
CVE-2005-2686
Directory traversal vulnerability in SaveWebPortal 3.4 allows remote attackers to include arbitrary files and execute arbitrary local PHP programs via ".." sequences in the 1 SITEPath parameter to menudx.php or 2 CONTENTSDir parameter to menusx.php...
CVE-2005-2687
PHP remote file inclusion vulnerability in SaveWebPortal 3.4 allows remote attackers to execute arbitrary PHP code via the 1 SITEPath parameter to menudx.php or 2 CONTENTSDir parameter to menusx.php...
CVE-2005-2686
Directory traversal vulnerability in SaveWebPortal 3.4 allows remote attackers to include arbitrary files and execute arbitrary local PHP programs via ".." sequences in the 1 SITEPath parameter to menudx.php or 2 CONTENTSDir parameter to menusx.php...
CVE-2005-2687
SaveWebPortal 3.4 is affected by a PHP remote file inclusion vulnerability that allows an attacker to execute arbitrary PHP code via the SITE_Path parameter to menu_dx.php or the CONTENTS_Dir parameter to menu_sx.php. The underlying issue is a remote file inclusion that can lead to code execution...