7 matches found
EUVD-2007-5034
Malware in sbrugna...
PT-2024-40432 · Ez Systems · Ez Platform
Name of the Vulnerable Software and Affected Versions: ezsystems/ezplatform versions 1.7.9 through 1.7.9, 1.13.5 through 1.13.5, 2.5.4 through 2.5.4 Description: The issue is related to caching vulnerabilities when the front-controller script is included in URLs. This is particularly problematic...
CVE-2015-8351
PHP remote file inclusion vulnerability in the Gwolle Guestbook plugin before 1.5.4 for WordPress, when allowurlinclude is enabled, allows remote authenticated users to execute arbitrary PHP code via a URL in the abspath parameter to frontend/captcha/ajaxresponse.php. NOTE: this can also be...
CVE-2007-4331
CVE-2007-4331 corresponds to a remote file inclusion (RFI) in FindNix: the index.php allows including contents from arbitrary URLs via the page parameter, enabling cross-site scripting (XSS) attacks. The NVD entry confirms a PHP RFI with XSS risk and a CVSS v2 base score of 4.3 (Medium) with netw...
mediaslashInclude.txt
author: Moroccan Security Team Vendor: www.MediaSlash.com Vendor Contacted greetz to : Moroccan Security Team CiM-TeaM and All Freinds Google : Powered by MediaSlash.com Details: MediaSlash Galleryis is vulnerable to remote URL inclusion vulnerability This flaw is due to an input validation error...
Valdersoft Shopping Cart 3.0 - Remote Command Execution
!/usr/bin/perl cijfer-vscxpl - Valdersoft Shopping Cart All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-vscxpl.pl -h www.valdersoft.com -d /store [email protected] /$ id;uname -a uid=2526apache gid=2524apache groups=2524apache, 10004psaserv FreeBSD valdersoft.com...
Input-validation vulnerability in PHP-Nuke allows arbitrary command execution via request for remote web site
Overview PHP-Nuke has an input-validation vulnerability that can lead to execution of arbitrary PHP code hosted on another web server. Description PHP-Nuke is a tool designed to ease web site creation and maintenance. PHP-Nuke includes a script named index.php, which uses PHP's include function t...