Scallywag (template.php path) Remote File Inclusion Vulnerabilities

No description provided by source. Scallywag = Remote File Inclusion Vulnerability Dork:"Powered by Scallywag"...

Scallywag - template.php?path Remote File Inclusion

Scallywag - template.php?path Remote File Inclusion Scallywag = Remote File Inclusion Vulnerability Dork:"Powered by Scallywag" Vuln Code ERROR1:skin/dark/template.php ?php include"$path/source/top.txt"; RFI CODE BUG1:...

Campsite 2.6.1 - template.php?g_documentRoot Remote File Inclusion

Campsite 2.6.1 - template.php?gdocumentRoot Remote File Inclusion source: https://www.securityfocus.com/bid/23874/info Campsite is prone to multiple remote file-include vulnerabilities. Exploiting this issue allows remote attackers to execute code in the context of the webserver. This issue affec...

CVE-2007-2155

Directory traversal vulnerability in template.php in in phpFaber TopSites 3 allows remote attackers to read arbitrary files via a .. dot dot in the modify parameter in a template action to admin/index.php...

CVE-2007-1894

Cross-site scripting XSS vulnerability in wp-includes/general-template.php in WordPress before 20070309 allows remote attackers to inject arbitrary web script or HTML via the year parameter in the wptitle function...

CVE-2007-1894

Cross-site scripting XSS vulnerability in wp-includes/general-template.php in WordPress before 20070309 allows remote attackers to inject arbitrary web script or HTML via the year parameter in the wptitle function...

CVE-2007-1894

CVE-2007-1894 describes an XSS in WordPress via the year parameter in wp_title, in the file wp-includes/general-template.php, before 20070309. The linked Debian advisory confirms fixes in WordPress versions 2.0.10-1 and 2.1.3-1 (DSA-1285-1). Other references (NVD OSV, OSV-DEBIAN) corroborate the ...

WordPress <= 2.0.10 - XSS

Because of this vulnerability in wp-includes/general-template.php, the attackers can inject arbitrary web script or HTML via the "year" parameter in the wptitle function. Solution Update the WordPress to the latest available version at least 2.0.11...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in ZPanel 2.0 allow remote attackers to execute arbitrary PHP code via a URL in 1 the body parameter to templates/ZPanelV2/template.php or 2 the page parameter to zpanel.php. NOTE: the zpanel.php vector may overlap CVE-2005-0793.2. NOTE: the...

ZebraFeeds 1.0 (zf_path) Remote File Include Vulnerabilities

Exploit for unknown platform in category web applications ============================================================ ZebraFeeds 1.0 zfpath Remote File Include Vulnerabilities ============================================================ Discovered By:- ThE email protected aggregator.php:-...

Axiom Photo/News Gallery 0.8.6 Remote File Include Exploit

No description provided by source. !/usr/bin/perl Axiom 0.8.6 photo gallery template.phpRemote File Include Vulnerability Bug Found : DeltahackingTEAM discovery:Dr.Pantagon & Exploitet By Dr.Trojan Class: Remote File Include Vulnerability exemplary Exp:...

WordPress < 2.0.6 HTML Parameter Injection

Binary data 3873.prm...

CVE-2006-6760

CVE-2006-6760 concerns Phpmymanga 0.8.1 and earlier. The vulnerability is a PHP remote file inclusion in template.php that lets an attacker cause code execution by supplying a URL in the (1) actionsPage or (2) formPage parameters. The underlying issue is unsafely including external URLs, enabling...

CVE-2006-6591

PHP remote file inclusion vulnerability in fonctions/template.php in EXlor 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the repphp parameter...

sphpblog08-rfi.txt

""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ DigitaL Hacking TeaM Sphpblog...

EXlor1.0.txt

-=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=- EXlor 1.0 /fonctions/template.php Remote File Include Vulnerability -=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=- Source Code: http://www.comscripts.com/jump.php?action=script&id=1904...

PHPMyManga 0.8.1 - template.php Multiple File Inclusions

PHPMyManga 0.8.1 - template.php Multiple File Inclusions +------------------------------------------------------------------------------------------- + PhpMyManga +------------------------------------------------------------------------------------------- + Details: + Input passed to the...

EXlor 1.0 &#40;/fonctions/template.php&#41; Remote File Include Vulnerability

-=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=- EXlor 1.0 /fonctions/template.php Remote File Include Vulnerability -=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=--=-=- Source Code: http://www.comscripts.com/jump.php?action=script&id=1904...

CVE-2006-5185

The CVE-2006-5185 issue affects HAMweather (versions 3.9.8.4 and earlier) where eval injection in Template.php occurs. An attacker can supply a modified query string that is passed to an eval call inside do_parse_code, allowing remote code execution. Impact is arbitrary code execution on the web ...

[SA22075] Web-News &quot;content_page&quot; File Inclusion Vulnerability

TITLE: Web-News "contentpage" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA22075 VERIFY ADVISORY: http://secunia.com/advisories/22075/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Web-News 1.x http://secunia.com/product/12104/ DESCRIPTION: Drago84 has...