SiteX 'THEME_FOLDER' Parameter Multiple Local File Include Vulnerabilities

SiteX is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow the...

CVE-2009-1846

CVE-2009-1846 affects SiteX (versions up to 0.7.4 Build 418) with multiple local file inclusion vulnerabilities via the THEME_FOLDER parameter in themes/, enabling an attacker to include/execute arbitrary local files (directories: Corporate, Fusion, Joombo, Streamline, Structure homepage.php). Th...

CVE-2009-1846

Multiple directory traversal vulnerabilities in SiteX 0.7.4 Build 418 and earlier allow remote attackers to include and execute arbitrary local files via a .. dot dot in the THEMEFOLDER parameter to 1 Corporate/homepage.php, 2 Fusion/homepage.php, 3 Joombo/homepage.php, 4 Streamline/homepage.php,...

SiteX 0.7.4.418 - THEME_FOLDER Local File Inclusion

SiteX 0.7.4.418 - THEMEFOLDER Local File Inclusion =-=-local file include-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-= script:SiteX074build418.zip ------------------------------------------------- Author: ahmadbady my site :Coming Soon =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...