cwmExplorer 1.0 (show_file) Source Code Disclosure Vulnerability

No description provided by source. Title : cwmExplorer 1.0 showfile Source Code Disclosure Vulnerability Author : ajann Contact : : ERROR------------------------------------------------------ .... .. $datei = "dirs/".$d."/".$GETshowfile;...

Multiple IBM Websphere security vulnerabilities

JSP pages source code access...

CVE-2006-6569

CVE-2006-6569 affects GenesisTrader 1.0. The NVD description documents that form.php allows remote attackers to read source code for arbitrary files and obtain sensitive information via the (1) do and (2) chem parameters with a "modfich" floap parameter. CVSSv2 metrics report a base score of 7.8 ...

genesistrader10.txt

GenesisTrader v1.0 ------------------ Vendor site: http://www.genesis-php.com/ Product: GenesisTrader v1.0 Vulnerability: Source Code Disclosure, Arbitrary File Upload & XSS Credits: MrKaLiMaN Reported to Vendor: 06/12/06 Public disclosure: 14/12/06 Description: ------------ Source Code...

By URL spoofing install Trojan-vulnerability warning-the black bar safety net

URL spoofing the usual moves 1.＠ Flag filter user name resolution Originally＠flag is the E－mail address of the user name and host separator, but in my URL, the same applies, but function exactly the same. HTTP Hypertext Transfer Protocol, governs me the URL of the full format is“Http://Name:...

[SA23319] Messageriescripthp SQL Injection and Cross-Site Scripting

TITLE: Messageriescripthp SQL Injection and Cross-Site Scripting SECUNIA ADVISORY ID: SA23319 VERIFY ADVISORY: http://secunia.com/advisories/23319/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: Messageriescripthp 2.x...

blogsql.txt

Open any blog entry 2. Try to reply to any message 3. Push "Preview message" button Do not post your reply 4. Save source code of opened page to your PC 5. Find this string ' / 6. Change with this SQL Injection: UNION SELECT b.entryid, b.blogid, b.categoryid, b.entryauthorid, b.entryauthorname,...

CVE-2006-6254

administration/telecharger.php in Cahier de texte 2.0 allows remote attackers to obtain unparsed content source code of files via the chemin parameter, as demonstrated using directory traversal sequences to obtain the MySQL username and password from conncahierdetexte.php. NOTE: it is not clear...

Hacker network intrusion 1 4 can use the method-vulnerability warning-the black bar safety net

Upload vulnerabilitydoes not speak pS: if you see:Choose your file to upload re-uploador there is a“please login”, 8 0% there is a loophole! Sometimes the upload will not necessarily be successful,it is because Cookies are not the same. We will use WSockExpert made Cookies. Then use the DOMAIN...

Sisfo Kampus <= 0.8 Remote File Inclusion / Download Vulnerabilities

No description provided by source. Source Code = Sisfokampus 0.8 Website = www.Sisfokampus.net Author = E. Setio Dewo [email protected] Dorkz : Allinurl: /index.php?exec= File Vuln : index.php print.php download.php Local File Include Found by : Wawan Firmansyah a.k.a Ang|n...

Cahier de texte 2.0 - Database Backup / Source Disclosure

!/usr/bin/perl INFORMATIONS ============ Affected.scr..: Cahier de texte V2.0 Poc.ID........: 15061124 Type..........: Predictable backup filename, Source disclosure Risk.level....: High Conditions....: registerglobals = on Src.download..: www.etab.ac-caen.fr/bsauveur/cahierdetexte/ Poc.link........

gnutar.txt

GNU tar directory traversal ---------------------------------------------------------------------------- What is it? When i download a tar file warez.tar.gz in this example from the web and run the following commands: $ mkdir /warez $ tar xzf warez.tar.gz -C /warez , then i would expect that tar...

encapscms036.txt

Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php"; includeonce$root."core/DBsql.php";...

phpjobscheduler30.txt

====================================================================== Phpjobscheduler 3.0 - Multiple Remote File Include by Firewall Application Affect: phpjobscheduler 3.0 Source Code: http://scripts.ringsworld.com/development-tools/phpjobscheduler.v3.0.zip Code: includeonce$installedconfigfile...

Exophpdesk V1.2 - Remote File Include

====================================================================== Exophpdesk V1.2 - Remote File Include by Firewall Application Affect: Exophpdesk V1.2 Sorce Code: http://scripts.ringsworld.com/customer-support/exophpdesk-v1.2.zip Code: includeonce$langfile; ExPloit :...

encapscms 0.3.6 - Remote File Include by Firewall

Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php"; includeonce$root."core/DBsql.php";...

EncapsCMS 0.3.6 - corecore.php Remote File Inclusion

EncapsCMS 0.3.6 - corecore.php Remote File Inclusion Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php";...

EncapsCMS 0.3.6 - '/core/core.php' Remote File Inclusion

Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php"; includeonce$root."core/DBsql.php";...

phpmychat0145traverse.txt

Title : PhpMyChat = 0.14.5 Source Code Disclosure Vulnerability Author : ajann Dork : phpMyChat 0.14.5 , phpMyChat Vuln; File localization/languages.lib.php3 /File Code,1 languages.lib.php3 Error: .. .... require"./$ChatPathconfig/config.lib.php3";...

phpmychatPlus19.txt

a Title : PhpMyChat Plus = 1.9 Multiple Source Code Disclosure Vulnerabilities Author : ajann Dork : phpMyChat plus Vuln; Files avatar.php colorhelppopup.php colorpopup.php index.php index1.php /lib/connectedusers.lib.php /lib/index.lib.php logs.php phpMyChat.php3 /Files Code,1...