8 matches found
EUVD-2005-0861
Malware in sbrugna...
TRG News 3.0 Script Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12855/info A remote file include vulnerability affects TRG News. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical functionality. Remote...
CVE-2005-0860
PHP remote file inclusion vulnerability in TRG News Script 3.0 allows remote attackers to execute arbitrary PHP code via the dir parameter to 1 article.php, 2 authorall.php, 3 comment.php, 4 display.php, or 5 displayall.php...
CVE-2005-0860
PHP remote file inclusion vulnerability in TRG News Script 3.0 allows remote attackers to execute arbitrary PHP code via the dir parameter to 1 article.php, 2 authorall.php, 3 comment.php, 4 display.php, or 5 displayall.php...
CVE-2005-0860
The CVE-2005-0860 entry concerns TRG News Script 3.0 and a PHP remote file inclusion vulnerability. The flaw allows an attacker to attempt remote code execution by supplying a crafted dir parameter to one of five scripts (article.php, authorall.php, comment.php, display.php, or displayall.php). T...
[SA14669] TRG News Script "dir" File Inclusion Vulnerability
---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: TRG News Script "dir" File Inclusion Vulnerability...
TRG News 3.0 Script - Remote File Inclusion
TRG News 3.0 Script - Remote File Inclusion source: https://www.securityfocus.com/bid/12855/info A remote file include vulnerability affects TRG News. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical functionality...
TRG News 3.0 Script - Remote File Inclusion
source: https://www.securityfocus.com/bid/12855/info A remote file include vulnerability affects TRG News. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical functionality. Remote attackers could potentially exploit...