EUVD-2007-1015

Malware in sbrugna...

Unfixed XSS vulnerability at www.greeneyewear.com

Security researcher VirtualSystEm, has submitted on 22/01/2011 a cross-site-scripting XSS vulnerability affecting www.greeneyewear.com, which at the time of submission ranked 17497718 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/11/2011. ...

Unfixed XSS vulnerability at www.febrilnotropeni.net

Security researcher VirtualSystEm, has submitted on 31/12/2010 a cross-site-scripting XSS vulnerability affecting www.febrilnotropeni.net, which at the time of submission ranked 9063158 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011...

CVE-2007-1013

PHP remote file inclusion vulnerability in generate.php in VirtualSystem Htaccess Passwort Generator 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the htpfad parameter...

CVE-2007-1017

PHP remote file inclusion vulnerability in shownewsinc.php in VirtualSystem VS-News-System 1.2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the newsordner parameter...

Remote file inclusion

PHP remote file inclusion vulnerability in shownewsinc.php in VirtualSystem VS-News-System 1.2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the newsordner parameter...

Remote file inclusion

PHP remote file inclusion vulnerability in tpl/header.php in VirtualSystem VS-News-System 1.2.1 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the newsordner parameter. NOTE: the provenance of this information is unknown; the detai...

Remote file inclusion

PHP remote file inclusion vulnerability in generate.php in VirtualSystem Htaccess Passwort Generator 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the htpfad parameter...

CVE-2007-1017

PHP remote file inclusion vulnerability in shownewsinc.php in VirtualSystem VS-News-System 1.2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the newsordner parameter...

CVE-2007-1013

PHP remote file inclusion vulnerability in generate.php in VirtualSystem Htaccess Passwort Generator 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the htpfad parameter...

CVE-2007-1013

CVE-2007-1013 is a PHP remote file inclusion vulnerability affecting the VirtualSystem Htaccess Passwort Generator 1.1. The flaw resides in generate.php where an attacker can supply a URL in the ht_pfad parameter to cause arbitrary PHP code execution on the affected system. The vulnerability desc...

CVE-2007-1018

CVE-2007-1018 affects VirtualSystem VS-News-System 1.2.1 and earlier. The issue is a PHP remote file inclusion via the newsordner parameter when register_globals is enabled, allowing remote attackers to execute arbitrary PHP code. This VULNERABILITY is documented in multiple sources (NVD entry; i...

CVE-2007-1017

The CVE-2007-1017 issue affects VirtualSystem VS-News-System (version 1.2.1 and earlier) where show_news_inc.php accepts the newsordner URL parameter, enabling a PHP remote file inclusion and arbitrary code execution. The root cause is a vulnerable inclusion path that allows remote attackers to D...

CVE-2007-1018

PHP remote file inclusion vulnerability in tpl/header.php in VirtualSystem VS-News-System 1.2.1 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the newsordner parameter. NOTE: the provenance of this information is unknown; the detai...

Htaccess Passwort Generator 1.1 (ht_pfad) RFI Vulnerability

HtaccessgenV1.1.1C Htaccess Passwort Generator V.1.1 Discovered By:- kezzap66345 Download:http://www.virtualsystem.de/downloads/index.php?mekat=PHPScripte&seite=2 dork:htgen.php code: include $htpfad."/tpl/ok.html"; exploit http://target/path/generate.php?htpfad=3vil script? I am a Turk...

S-Gastebuch <= 1.5.3 (gb_pfad) Remote File Include Exploit

Exploit for unknown platform in category web applications ========================================================== S-Gastebuch S-Gastebuch //'=============================================================================================== //'Script Name: S-Gastebuch //'.... //'...

Htaccess Passwort Generator 1.1 - &#039;ht_pfad&#039; Remote File Inclusion

HtaccessgenV1.1.1C Htaccess Passwort Generator V.1.1 Discovered By:- kezzap66345 Download:http://www.virtualsystem.de/downloads/index.php?mekat=PHPScripte&seite=2 dork:htgen.php code: include $htpfad."/tpl/ok.html"; exploit http://target/path/generate.php?htpfad=3vil script? I am a Turk...

VS-Link-Partner 2.1 - &#039;script_pfad&#039; Remote File Inclusion

VS-Link-Partner //'=============================================================================================== //'Script Name: VS-Link-Partner //'.... //'.. //'ERROR--------------------------------------------------------- // ajann,Turkey // ... //Basic exploit,but any time : var path="/inc/"...