41 matches found
EUVD-2003-1448
Malware in sbrugna...
EUVD-2003-0315
Malware in sbrugna...
EUVD-2003-1449
Malware in sbrugna...
EUVD-2007-1702
Malware in sbrugna...
ttCMS 2.2 / ttForum 1.1 News.php template Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/7542/info A remote file include vulnerability has been reported for both ttForum and ttCMS. Due to insufficient sanitization of some user-supplied variables by the 'News.php' and 'Install.php' scripts, it is possible for ...
ttCMS 2.2 / ttForum 1.1 install.php installdir Parameter Remote File Inclusion
No description provided by source...
ttCMS <= 4 - (ez_sql.php lib_path) Remote File Inclusion Vulnerability
No description provided by source. DEVIL TEAM - HACKING POLISH TEAM Author: Kacper a.k.a Rahim Contact: [email protected] Homepage: http://www.rahim.webd.pl/ Irc: irc.milw0rm.com:6667 devilteam -------------------------------------------- Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM...
ttCMS 2.2/2.3 Header.PHP Remote File Include Vulnerability
No description provided by source...
ttCMS 2.2/2.3,ttForum 1.1 Index.PHP Instant-Messages Preferences SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7634/info A problem with ttCMS/ttForum could make it possible for a remote user to launch SQL injection attacks. It has been reported that a problem exists in the Instant-Messages script distributed as part of the softwar...
ttCMS 5.0 - Remote File Inclusion Vulnerability
No description provided by source. html head meta http-equiv=Content-Type content=text/html; charset=windows-1254 titlecoded by ahmadbady/title script language=JavaScript //=========================================================================== // Topic : ttCMSv5 // Bug type : remote file...
CVE-2003-1458
CVE-2003-1458 affects ttCMS 2.2 and ttForum via a SQL injection vulnerability in Profile.php, exploitable through the member name to execute arbitrary SQL commands. The vulnerability is remote and the documented impact is partial confidentiality, integrity, and availability. Exploitation details ...
CVE-2003-1459
Multiple PHP remote file inclusion vulnerabilities in ttCMS 2.2 and ttForum allow remote attackers to execute arbitrary PHP code via the 1 template parameter in News.php or 2 installdir parameter in install.php...
CVE-2003-1459
CVE-2003-1459 affects ttCMS 2.2 and ttForum, with multiple PHP remote file inclusion vulnerabilities. The issue allows remote attackers to execute arbitrary PHP code via (1) the template parameter in News.php or (2) the installdir parameter in install.php. Exploitation details indicate that this ...
TTCMS EZ_SQL.PHP远程文件包含漏洞
TTCMS是一款基于PHP的WEB应用程序。 TTCMS不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'EZSQL.PHP'脚本对用户提交的'libpath'参数缺少过滤,指定远程服务器上的文件作为包含参数,可导致以WEB权限执行任意命令。 ttCMS 4 目前没有解决方案提供: http://www.ttcms.com/v4/ http://www.example.com/ttCMSpath/lib/db/ezsql.php?libpath=evilcode...
CVE-2007-1708
PHP remote file inclusion vulnerability in lib/db/ezsql.php in ttCMS 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter...
Remote file inclusion
PHP remote file inclusion vulnerability in lib/db/ezsql.php in ttCMS 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter...
CVE-2007-1708
The CVE-2007-1708 entry describes a PHP remote file inclusion in ttCMS, affecting ttCMS 4 and earlier. The vulnerability resides in lib/db/ez_sql.php and allows an attacker to execute arbitrary PHP code by supplying a URL in the lib_path parameter that is included by the application. This leads t...
CVE-2007-1708
PHP remote file inclusion vulnerability in lib/db/ezsql.php in ttCMS 4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter...
ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability
No description provided by source. DEVIL TEAM - HACKING POLISH TEAM Author: Kacper a.k.a Rahim Contact: [email protected] Homepage: http://www.rahim.webd.pl/ Irc: irc.milw0rm.com:6667 devilteam -------------------------------------------- Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM...
ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability
DEVIL TEAM - HACKING POLISH TEAM Author: Kacper a.k.a Rahim Contact: [email protected] Homepage: http://www.rahim.webd.pl/ Irc: irc.milw0rm.com:6667 devilteam -------------------------------------------- Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM. ttCMS = v4 ezsql.php libpath RFI...