phpsmartcom 0.2 - Local File Inclusion / SQL Injection

fphpSmartCom v. 0.2 Local File Inclusion , SQL Injection Vuln Download : http://sourceforge.net/projects/phpsmartcom/ Local File Inclusion: http://127.0.0.1/phpsmartcom/index.php?p=../../../../../boot.ini%00 SQL Injection:...

Directory traversal

Multiple directory traversal vulnerabilities in index.php in Flat PHP Board 1.2 and earlier allow remote attackers to 1 create arbitrary files via a .. dot dot in the username parameter when registering a user account, and 2 read arbitrary PHP files via a .. dot dot in a the topic parameter in a...

CVE-2007-6397

Multiple directory traversal vulnerabilities in index.php in Flat PHP Board 1.2 and earlier allow remote attackers to 1 create arbitrary files via a .. dot dot in the username parameter when registering a user account, and 2 read arbitrary PHP files via a .. dot dot in a the topic parameter in a...

CVE-2006-3275

SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and earlier allows remote attackers to execute SQL commands via a double-encoded user parameter in a viewprofile action...