11 matches found
W-Agora 4.0 - delete_notes.php bn_dir_default Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
W-Agora 4.0 - edit_forum.php bn_dir_default Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
W-Agora 4.0 - moderate_notes.php bn_dir_default Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in W-Agora 4.0 allow remote attackers to execute arbitrary PHP code via a URL in the bndirdefault parameter to 1 adduser.php, 2 createforum.php, 3 createuser.php, 4 deletenotes.php, 5 deleteuser.php, 6 editforum.php, 7 mailusers.php, 8...
CVE-2008-1466
Multiple PHP remote file inclusion vulnerabilities in W-Agora 4.0 allow remote attackers to execute arbitrary PHP code via a URL in the bndirdefault parameter to 1 adduser.php, 2 createforum.php, 3 createuser.php, 4 deletenotes.php, 5 deleteuser.php, 6 editforum.php, 7 mailusers.php, 8...
CVE-2008-1466
CVE-2008-1466 affects W-Agora 4.0 and allows remote PHP code execution through remote file inclusion. The vulnerability is triggered by a URL parameter bn_dir_default passed to one of nine scripts (add_user.php, create_forum.php, create_user.php, delete_notes.php, delete_user.php, edit_forum.php,...
CVE-2008-1466
Multiple PHP remote file inclusion vulnerabilities in W-Agora 4.0 allow remote attackers to execute arbitrary PHP code via a URL in the bndirdefault parameter to 1 adduser.php, 2 createforum.php, 3 createuser.php, 4 deletenotes.php, 5 deleteuser.php, 6 editforum.php, 7 mailusers.php, 8...
W-Agora 4.0 - mail_users.php?bn_dir_default Remote File Inclusion
W-Agora 4.0 - mailusers.php?bndirdefault Remote File Inclusion source: https://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to...
W-Agora 4.0 - edit_forum.php?bn_dir_default Remote File Inclusion
W-Agora 4.0 - editforum.php?bndirdefault Remote File Inclusion source: https://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to...
W-Agora 4.0 - 'mail_users.php?bn_dir_default' Remote File Inclusion
source: https://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks...
W-Agora 4.0 - 'create_user.php?bn_dir_default' Remote File Inclusion
source: https://www.securityfocus.com/bid/28366/info w-Agora is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks...