Lucene search
K

10 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

Sponge News <= 2.2 (sndir) Remote File Include Vulnerability

No description provided by source. ============================================================================================== Sponge News = v2.2 sndir Remote File Inclusion Exploit =============================================================================================== Critical Level :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/16 12:0 a.m.17 views

Sponge News News.PHP远程文件包含漏洞

Sponge News是一款基于PHP的新闻管理程序。 Sponge News不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'News.PHP'脚本对用户提交的'sndir'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Sponge News Sponge News 2.2 http://rickeeweb.free.fr/spongeweb http://www.example.com/Script Path/news.php?sndir=http://www.example.com...

7.1AI score
Exploits0
NVD
NVD
added 2006/09/08 9:4 p.m.10 views

CVE-2006-4647

PHP remote file inclusion vulnerability in news.php in Sponge News 2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the sndir parameter...

7.5CVSS7.6AI score0.03179EPSS
Exploits1References6
Cvelist
Cvelist
added 2006/09/08 9:0 p.m.17 views

CVE-2006-4647

PHP remote file inclusion vulnerability in news.php in Sponge News 2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the sndir parameter...

7.6AI score0.03179EPSS
Exploits1References6
CVE
CVE
added 2006/09/08 9:0 p.m.39 views

CVE-2006-4647

CVE-2006-4647 is a PHP remote file inclusion vulnerability in Sponge News 2.2 and earlier. The flaw exists in news.php and allows a remote attacker to execute arbitrary PHP code by supplying a URL in the sndir parameter. The NVD entry assigns a base score of 7.5 (HIGH) with network attack vector ...

7.5CVSS7.9AI score0.03179EPSS
Exploits1References6Affected Software1
securityvulns
securityvulns
added 2006/09/06 12:0 a.m.40 views

Sponge News &lt;= v2.2 &#40;sndir&#41; Remote File Inclusion Exploit

============================================================================================== Sponge News = v2.2 sndir Remote File Inclusion Exploit =============================================================================================== Critical Level : Dangerous Venedor site :...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2006/09/05 12:0 a.m.20 views

Sponge News 2.2 - sndir Remote File Inclusion

Sponge News 2.2 - sndir Remote File Inclusion ============================================================================================== Sponge News = v2.2 sndir Remote File Inclusion Exploit ===============================================================================================...

0.1AI score
Exploits0
0day.today
0day.today
added 2006/09/05 12:0 a.m.23 views

Sponge News <= 2.2 (sndir) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================ Sponge News = 2.2 sndir Remote File Include Vulnerability ============================================================...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/09/05 12:0 a.m.9 views

Sponge News &lt;= 2.2 (sndir) Remote File Include Vulnerability

No description provided by source. ============================================================================================== Sponge News = v2.2 sndir Remote File Inclusion Exploit =============================================================================================== Critical Level :...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/09/05 12:0 a.m.32 views

Sponge News 2.2 - &#039;sndir&#039; Remote File Inclusion

============================================================================================== Sponge News = v2.2 sndir Remote File Inclusion Exploit =============================================================================================== Critical Level : Dangerous Venedor site :...

7.4AI score
Exploits0
Rows per page
Query Builder