19 matches found
EUVD-2008-4720
Malware in sbrugna...
TinyCMS 1.4 Local File Inclusion
Exploit title: TinyCMS - Local File Inclusion + Date: 2/10/2012 + Author: Phizo + Vendor: http://www.tinycms.net/ + Version: 1.2 - 1.4 + Category: webapps + Google dork: intext:"Powered by TinyCMS" + Tested on: Windows 7 | Firefox 15.0.1 All current versions of TinyCMS seem to be affected by the...
TinyCMS 1.3 CSRF / LFI / File Upload
Happy Milw0rm 1337 Day!!! Congratulations all h4x0rz 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
TinyCMS 1.3 - '/admin/admin.php?do' Traversal Local File Inclusion
source: https://www.securityfocus.com/bid/53761/info TinyCMS is prone to multiple local file-include vulnerabilities and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the web server, execute arbitrary local files within the context of...
TinyCMS 1.3 - Arbitrary File Upload Cross-Site Request Forgery
TinyCMS 1.3 - Arbitrary File Upload Cross-Site Request Forgery source: https://www.securityfocus.com/bid/53761/info TinyCMS is prone to multiple local file-include vulnerabilities and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the w...
TinyCMS v1.3 <= XSRF/LFI/FU Multiple Vulnerabilities
Exploit for php platform in category web applications Happy Milw0rm 1337 Day!!! Congratulations all h4x0rz 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by...
TinyCMS 1.3 - adminadmin.php?do Traversal Local File Inclusion
TinyCMS 1.3 - adminadmin.php?do Traversal Local File Inclusion source: https://www.securityfocus.com/bid/53761/info TinyCMS is prone to multiple local file-include vulnerabilities and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the w...
TinyCMS 1.3 - index.php?page Traversal Local File Inclusion
TinyCMS 1.3 - index.php?page Traversal Local File Inclusion source: https://www.securityfocus.com/bid/53761/info TinyCMS is prone to multiple local file-include vulnerabilities and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the web...
TinyCMS 1.3 - 'index.php?page' Traversal Local File Inclusion
source: https://www.securityfocus.com/bid/53761/info TinyCMS is prone to multiple local file-include vulnerabilities and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the web server, execute arbitrary local files within the context of...
TinyCMS 1.3 - Arbitrary File Upload / Cross-Site Request Forgery
source: https://www.securityfocus.com/bid/53761/info TinyCMS is prone to multiple local file-include vulnerabilities and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the web server, execute arbitrary local files within the context of...
CVE-2008-4740
Directory traversal vulnerability in templater.php in the ZZTemplater module in TinyCMS 1.1.2, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the configtemplate parameter...
Directory traversal
Directory traversal vulnerability in templater.php in the ZZTemplater module in TinyCMS 1.1.2, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the configtemplate parameter...
CVE-2008-4740
CVE-2008-4740 affects TinyCMS 1.1.2 with the ZZ_Templater module, specifically templater.php. The vulnerability is a directory traversal that, when register_globals is enabled and magic_quotes_gpc is disabled, allows a remote attacker to include and execute arbitrary local files by manipulating c...
CVE-2008-4740
Directory traversal vulnerability in templater.php in the ZZTemplater module in TinyCMS 1.1.2, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the configtemplate parameter...
tinycms-lfi.txt
Name : tinyCMS 1.1.2 templater.php Local File Inclusion Vulnerability Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, doctor, voo|doo, sid.psycho, irk4z Conditions : Magic quotes gpc = Off / Register Globals = On Other info : Prior versions probably are vulnerable too Source of...
tinyCMS 1.1.2 (templater.php) Local File Inclusion Vulnerability
No description provided by source. Name : tinyCMS 1.1.2 templater.php Local File Inclusion Vulnerability Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, doctor, voo|doo, sid.psycho, irk4z Conditions : Magic quotes gpc = Off / Register Globals = On Other info : Prior versions...
tinyCMS 1.1.2 (templater.php) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ================================================================ tinyCMS 1.1.2 templater.php Local File Inclusion Vulnerability ================================================================ ? Name : tinyCMS 1.1.2 templater.php Local Fil...
TinyCMS 1.1.2 - 'templater.php' Local File Inclusion
 Name : tinyCMS 1.1.2 templater.php Local File Inclusion Vulnerability Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, doctor, voo|doo, sid.psycho, irk4z Conditions : Magic quotes gpc = Off / Register Globals = On Other info : Prior versions probably are vulnerable too Sourc...
TinyCMS 1.1.2 - templater.php Local File Inclusion
TinyCMS 1.1.2 - templater.php Local File Inclusion  Name : tinyCMS 1.1.2 templater.php Local File Inclusion Vulnerability Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, doctor, voo|doo, sid.psycho, irk4z Conditions : Magic quotes gpc = Off / Register Globals = On Other info...