CVE-2011-0505

Directory traversal vulnerability in system/system.php in Zwii 2.1.1, when magicquotesgpc is disabled and registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the settemplatevalue parameter...

CVE-2011-0505

CVE-2011-0505 affects Zwii 2.1.1, specifically the directory traversal flaw in system/system.php. The root cause is that when magic_quotes_gpc is disabled and register_globals is enabled, an attacker can manipulate the set[template][value] parameter to include and execute arbitrary local files. T...

Zwii v 2.1.1 Remote File Inclusion Vulnerbility

Exploit for php platform in category web applications Exploit Title: Zwii v 2.1.1 Remote file include vulnerbility Google Dork: Propulsé par Zwii 2.1.1 Date: 08/01/2011 Author: Abdi Mohamed Software Link: http://scripts.toocharger.com/fiches/scripts/zwii/5147.htm Version: v 2.1.1 Tested on: ubun...

Zwii 2.1.1 - Remote File Inclusion

Zwii 2.1.1 - Remote File Inclusion Exploit Title: Zwii v 2.1.1 Remote file include vulnerbility Google Dork: Propulsé par Zwii 2.1.1 Date: 08/01/2011 Author: Abdi Mohamed Software Link: http://scripts.toocharger.com/fiches/scripts/zwii/5147.htm Version: v 2.1.1 Tested on: ubuntu + centos Email :...

Zwii 2.1.1 - Remote File Inclusion

Exploit Title: Zwii v 2.1.1 Remote file include vulnerbility Google Dork: Propulsé par Zwii 2.1.1 Date: 08/01/2011 Author: Abdi Mohamed Software Link: http://scripts.toocharger.com/fiches/scripts/zwii/5147.htm Version: v 2.1.1 Tested on: ubuntu + centos Email : [email protected] -...

V-Webmail 1.6.4 - includespearSystem.php?CONFIG[pear_dir] Remote File Inclusion

V-Webmail 1.6.4 - includespearSystem.php?CONFIGpeardir Remote File Inclusion source: https://www.securityfocus.com/bid/30162/info V-webmail is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues can allow an...

CVE-2008-2820

Directory traversal vulnerability in lang/lang-system.php in Open Azimyt CMS 0.22 minimal and 0.21 stable allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...

1024 CMS <= 1.4.2 Local File Inclusion / Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== 1024 CMS = 1.4.2 Local File Inclusion / Blind SQL Injection Exploit ==================================================================== Author: GiReX Date: 13/04/2008 CM...

reloadcms-lfi.txt

New Advisory: ReloadCMS http://reloadcms.com ——————–Summary—————- Software: ReloadCMS Sowtware’s Web Site: http://reloadcms.com/main/ Versions: 1.2.7 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote Status: Unpatched PoC/Exploit: Available Solution: Not Available Discovered b...

ReloadCMS Vulnerable

New Advisory: ReloadCMS http://reloadcms.com ——————–Summary—————- Software: ReloadCMS Sowtware’s Web Site: http://reloadcms.com/main/ Versions: 1.2.7 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote Status: Unpatched PoC/Exploit: Available Solution: Not Available Discovered b...