PHP 4.4.6 - 'cpdf_open()' Local Source Code Disclosure

?php / PHP 4.4.6 cpdfopen source code disclosure poc by rgod site: http://retrogod.altervista.org to be launched from the cli this will show as output something like this: ClibPDF: Cannot open A 11111$mypasswordis="suntzu";newline $mypasswordis="suntzu";etc... for PDF output X-Powered-By: PHP/4.4...

Directory traversal

include/debug.php in Webfwlog 0.92 and earlier, when registerglobals is enabled, allows remote attackers to obtain source code of files via the conffile parameter. NOTE: some of these details are obtained from third party information. It is likely that this issue can be exploited to conduct...

CVE-2007-0585

include/debug.php in Webfwlog 0.92 and earlier, when registerglobals is enabled, allows remote attackers to obtain source code of files via the conffile parameter. NOTE: some of these details are obtained from third party information. It is likely that this issue can be exploited to conduct...

CVE-2007-0585

CVE-2007-0585 concerns Webfwlog before 0.92: when register_globals is on, remote attackers can request conffile parameters via include/debug.php to obtain source code of files, with potential directory traversal implications. The connected documents corroborate the description but do not provide ...

iDefense Security Advisory 01.09.07: Adobe Macromedia ColdFusion Source Code Disclosure Vulnerability

Adobe Macromedia ColdFusion Source Code Disclosure Vulnerability iDefense Security Advisory 01.09.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 09, 2007 I. BACKGROUND Adobe Macromedia ColdFusion is an application server and development framework for websites. More information is...

PHP Advanced Transfer Manager <= 1.30 Source Code Disclosure Exploit

No description provided by source. ? / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+ +:+:+ +:...

CVE-2006-6104

The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in Mono does not properly verify local pathnames, which allows remote attackers to 1 read source code by appending a space %20 to a URI, and 2 read credentials via a request for Web.Config%20...

CVE-2006-6104

CVE-2006-6104 affects the Mono platform’s XSP/ASP.NET server. The System.Web class does not properly verify local pathnames, allowing remote attackers to read sensitive content: source code by appending a space to a URI, and Web.Config via a Web.Config%20 request. The vulnerability lies in Mono 1...

PHP Advanced Transfer Manager 1.30 - Source Code Disclosure

PHP Advanced Transfer Manager 1.30 - Source Code Disclosure DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM Patriots ...

PHP Advanced Transfer Manager <= 1.30 Source Code Disclosure Exploit

Exploit for unknown platform in category web applications ==================================================================== PHP Advanced Transfer Manager = 1.30 Source Code Disclosure Exploit ==================================================================== ? / ::::::::: :::::::::: ::: :::...

cwmExplorer 1.0 &#40;show_file&#41; Source Code Disclosure Vulnerability

Title : cwmExplorer 1.0 showfile Source Code Disclosure Vulnerability Author : ajann Contact : : ERROR------------------------------------------------------ .... .. $datei = "dirs/".$d."/".$GETshowfile; .... .. ERROR--------------------------------------------------------- Example:...

PHP Advanced Transfer Manager 1.30 - Source Code Disclosure

DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM Patriots : - Leito & Leon | friend str0ke ; Blund Coder, D0han, d3m0n...

cwmExplorer 1.0 (show_file) Source Code Disclosure Vulnerability

Exploit for unknown platform in category web applications ================================================================ cwmExplorer 1.0 showfile Source Code Disclosure Vulnerability ================================================================ Title : cwmExplorer 1.0 showfile Source Code...

cwmExplorer 1.0 - &#039;show_file&#039; Source Code Disclosure

Title : cwmExplorer 1.0 showfile Source Code Disclosure Vulnerability Author : ajann Contact : : ERROR------------------------------------------------------ .... .. $datei = "dirs/".$d."/".$GETshowfile; .... .. ERROR--------------------------------------------------------- Example:...

genesistrader10.txt

GenesisTrader v1.0 ------------------ Vendor site: http://www.genesis-php.com/ Product: GenesisTrader v1.0 Vulnerability: Source Code Disclosure, Arbitrary File Upload & XSS Credits: MrKaLiMaN Reported to Vendor: 06/12/06 Public disclosure: 14/12/06 Description: ------------ Source Code...

Cahier de texte 2.0 - Database Backup / Source Disclosure

!/usr/bin/perl INFORMATIONS ============ Affected.scr..: Cahier de texte V2.0 Poc.ID........: 15061124 Type..........: Predictable backup filename, Source disclosure Risk.level....: High Conditions....: registerglobals = on Src.download..: www.etab.ac-caen.fr/bsauveur/cahierdetexte/ Poc.link........

phpmychatPlus19.txt

a Title : PhpMyChat Plus = 1.9 Multiple Source Code Disclosure Vulnerabilities Author : ajann Dork : phpMyChat plus Vuln; Files avatar.php colorhelppopup.php colorpopup.php index.php index1.php /lib/connectedusers.lib.php /lib/index.lib.php logs.php phpMyChat.php3 /Files Code,1...

PhpMyChat &lt;= 0.14.5 Source Code Disclosure Vulnerability

Title : PhpMyChat = 0.14.5 Source Code Disclosure Vulnerability Author : ajann Dork : phpMyChat 0.14.5 , phpMyChat Vuln; File localization/languages.lib.php3 /File Code,1 languages.lib.php3 Error: .. .... require"./$ChatPathconfig/config.lib.php3";...

phpmychat0145traverse.txt

Title : PhpMyChat = 0.14.5 Source Code Disclosure Vulnerability Author : ajann Dork : phpMyChat 0.14.5 , phpMyChat Vuln; File localization/languages.lib.php3 /File Code,1 languages.lib.php3 Error: .. .... require"./$ChatPathconfig/config.lib.php3";...

Netref 4 (cat_for_aff.php) Source Code Disclosure Exploit

No description provided by source. % Response.Buffer = True % % On Error Resume Next % % Server.ScriptTimeout = 100 % % '=============================================================================================== ' =option.php Reader 'Script Name: Netref 4 catforaff.php Source Code Disclosure...