EUVD-2006-5277

Malware in sbrugna...

EUVD-2007-5574

Malware in sbrugna...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in awrate 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to 1 404.php or 2 topbar.php, different vectors than CVE-2006-6368...

Awrate Toroot参数远程文件包含漏洞

Awrate是一款基于PHP的WEB应用程序。 Awrate不充分过滤用户提交的URI输入，远程攻击者可以利用漏洞以WEB进程权限执行任意指令。 问题是'search.php'脚本对用户提交的'toroot'参数缺少过滤，指定远程服务器上的任意文件作为包含对象，可导致以进程权限执行任意指令。 awrate awrate 1.0 目前没有解决方案提供 !/usr/bin/perl Portal Name : awrate 1.0search.php Remote File Inclusion Exploit BUG:...

Exhibit Engine 1.22 - styles.php Remote File Inclusion

Exhibit Engine 1.22 - styles.php Remote File Inclusion $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ Exhibit Engine = 1.22 toroot Remote File Include Vulnerability $$ Script site: http://photography-on-the.net/ee/ $$...

Exhibit Engine 1.22 - 'styles.php' Remote File Inclusion

$$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ Exhibit Engine = 1.22 toroot Remote File Include Vulnerability $$ Script site: http://photography-on-the.net/ee/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ Find by: Kacper a.k.a Rahim $$ $$ Contact...

Exhibit Engine <= 1.22 (styles.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ===================================================================== Exhibit Engine = 1.22 styles.php Remote File Include Vulnerability ===================================================================== $$$$$$$$$$$$$$$ DEVIL TEAM THE...