36 matches found
EUVD-2005-4807
Malware in sbrugna...
EUVD-2006-5483
Malware in sbrugna...
EUVD-2006-5707
Malware in sbrugna...
EUVD-2006-5475
Malware in sbrugna...
CVE-2005-4814
Unrestricted file upload vulnerability in Segue CMS before 1.3.6, when the Apache HTTP Server handles .phtml files with the PHP interpreter, allows remote attackers to upload and execute arbitrary PHP code by placing .phtml files in the userfiles/ directory...
Segue CMS <= 1.5.8 (themesdir) Remote File Include Vulnerability
No description provided by source...
Segue CMS <= 1.8.4 index.php Remote File Inclusion Vulnerability
No description provided by source. ?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ?????????????????????????????????????...
Segue vulnerable to cross-site scripting
Overview Segue contains a cross-site scripting vulnerability. Segue is a content management system. Segue contains a cross-site scripting vulnerability. Daiki Fukumori of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information...
Segue CMS themesdir Parameter Remote File Include Vulnerability
The remote web server contains a PHP script that is affected by a remote file include issue. Description: The remote web server is running Segue CMS, an open source content management system tailored for educational institutions. The version of Segue CMS installed on the remote host fails to...
Segue CMS themesdir Parameter Remote File Include Vulnerability
The remote web server contains a PHP script that is affected by a remote file include issue. Description: The remote web server is running Segue CMS, an open source content management system tailored for educational institutions. The version of Segue CMS installed on the remote host fails to...
CVE-2007-5186
PHP remote file inclusion vulnerability in index.php in Segue CMS 1.8.4 and earlier, when registerglobals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the themesdir parameter, a different vector than CVE-2006-5497. NOTE: this issue was disputed, but the dispute...
Remote file inclusion
PHP remote file inclusion vulnerability in index.php in Segue CMS 1.8.4 and earlier, when registerglobals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the themesdir parameter, a different vector than CVE-2006-5497. NOTE: this issue was disputed, but the dispute...
CVE-2007-5186
PHP remote file inclusion vulnerability in index.php in Segue CMS 1.8.4 and earlier, when registerglobals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the themesdir parameter, a different vector than CVE-2006-5497. NOTE: this issue was disputed, but the dispute...
CVE-2007-5186
Segue CMS suffers a PHP remote file inclusion via the themesdir parameter in index.php (and related themes/settings scripts) for versions 1.8.4 and earlier. The underlying issue is unsanitized input used to include PHP code in themes/program/themesettings.inc.php, which can enable arbitrary code ...
Segue CMS <= 1.8.4 index.php Remote File Inclusion Vulnerability
No description provided by source. ?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ?????????????????????????????????????...
Segue CMS <= 1.8.4 index.php Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================ Segue CMS = 1.8.4 index.php Remote File Inclusion Vulnerability ================================================================ ?????????? ??????????????? ??????????????????...
Segue CMS 1.8.4 - index.php Remote File Inclusion
Segue CMS 1.8.4 - index.php Remote File Inclusion ?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ?????????????????????????????????????...
Segue CMS 1.8.4 - 'index.php' Remote File Inclusion
?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ????????????????????????????????????? ???????????????????????????????????????...
CVE-2006-5722
Multiple PHP remote file inclusion vulnerabilities in Segue CMS 1.5.9 and earlier, when magicquotesgpc is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the theme parameter to 1 themesettings.php or 2 index.php, a different vector than CVE-2006-5497. NOTE: the provenan...
CVE-2006-5722
Multiple PHP remote file inclusion vulnerabilities in Segue CMS 1.5.9 and earlier, when magicquotesgpc is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the theme parameter to 1 themesettings.php or 2 index.php, a different vector than CVE-2006-5497. NOTE: the provenan...