CVE-2008-1621

Multiple cross-site scripting XSS vulnerabilities in GeeCarts allow remote attackers to inject arbitrary web script or HTML via the id parameter to 1 show.php, 2 search.php, and 3 view.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

CVE-2003-1555

ScozNet ScozBook 1.1 BETA is affected by a vulnerability in view.php where an invalid PG parameter triggers an error message that reveals the installation path, causing information disclosure. Affected component: ScozBook web frontend (view.php). Root cause: improper handling of the PG parameter ...

CVE-2008-0783

Multiple cross-site scripting XSS vulnerabilities in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allow remote attackers to inject arbitrary web script or HTML via 1 the viewtype parameter to graph.php; 2 the filter parameter to graphview.php; 3 the action parameter to the drawnavigationtext...

Sql injection

Multiple SQL injection vulnerabilities in aflog 1.01, and possibly earlier versions, allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to comments.php and 2 an unspecified parameter to view.php...

CVE-2008-0268

Cross-site scripting XSS vulnerability in view.php in eTicket 1.5.5.2 allows remote attackers to inject arbitrary web script or HTML via the s parameter...

CVE-2008-0268

Cross-site scripting XSS vulnerability in view.php in eTicket 1.5.5.2 allows remote attackers to inject arbitrary web script or HTML via the s parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in view.php in Mantis before 1.1.0 allows remote attackers to inject arbitrary web script or HTML via a filename, related to bugreport.php...

CVE-2007-6611

Cross-site scripting XSS vulnerability in view.php in Mantis before 1.1.0 allows remote attackers to inject arbitrary web script or HTML via a filename, related to bugreport.php...

Sql injection

Multiple SQL injection vulnerabilities in MeGaCheatZ 1.1 allow remote attackers to execute arbitrary SQL commands via the ItemID parameter to 1 comments.php, 2 view.php, 3 siteadmin/ViewItem.php, and unspecified other vectors...

Mantis < 0.9.5 / 1.1.0 RC5 view.php HTML Injection

Binary data 4326.prm...

Directory traversal

Directory traversal vulnerability in view.php in xeCMS 1.0 allows remote attackers to read arbitrary files via a ..%2F dot dot slash in the list parameter...

CVE-2007-6508

Directory traversal vulnerability in view.php in xeCMS 1.0 allows remote attackers to read arbitrary files via a ..%2F dot dot slash in the list parameter...

CVE-2007-6508

CVE-2007-6508 is a directory traversal vulnerability in xeCMS 1.0 (view.php) that allows remote attackers to read arbitrary files via a ..%2F (dot dot slash) in the list parameter. The entry is supported by multiple sources (NVD, CVE List) with a CVSS v2 base score of 7.5 (HIGH) and network attac...

xeCMS 1.x.x Remote File Disclosure Vulnerability.

-------------------------------------------------------------- xeCMS 1.x.x Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://xecms.sunsite.dk/ author : p4imi0 contact : [email protected] exploit : view.php?list=..2F..2F...

xeCMS 1.x - view.php Remote File Disclosure

xeCMS 1.x - view.php Remote File Disclosure -------------------------------------------------------------- xeCMS 1.x.x Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://xecms.sunsite.dk/ author : p4imi0 contact : [email protected]...

xeCMS 1.x (view.php list) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ============================================================== xeCMS 1.x view.php list Remote File Disclosure Vulnerability ==============================================================...

xeCMS 1.x - &#039;view.php&#039; Remote File Disclosure

-------------------------------------------------------------- xeCMS 1.x.x Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://xecms.sunsite.dk/ author : p4imi0 contact : [email protected] exploit : view.php?list=..%2F..%2F...

webed-rfi.txt

--------------------------------------------------------------- Multiple Remote File Inclusion Vulnerability --------------------------------------------------------------- Founded by : Seph1roth Download Script: http://sourceforge.net/projects/ed-engine/ WebED-0.8999.tar.gz Exploit:...

CVE-2007-2084

CVE-2007-2084 affects MobilePublisherphp version 1.1.2 and is described as a PHP remote file inclusion vulnerability in the admin directory. The issue permits an attacker to supply a URL in the auth_method parameter to any of the admin PHP files (index.php, list.php, postreview.php, reindex.php, ...

CVE-2007-1838

SQL injection vulnerability in view.php in the Friendfinder 3.3 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id parameter...