161 matches found
Unfixed XSS vulnerability at www.dotcomunderground.com
Security researcher Uber0n, has submitted on 12/10/2007 a cross-site-scripting XSS vulnerability affecting www.dotcomunderground.com, which at the time of submission ranked 39683 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/11/2007. It is...
Unfixed XSS vulnerability at www.dotcomunderground.com
Security researcher Uber0n, has submitted on 12/10/2007 a cross-site-scripting XSS vulnerability affecting www.dotcomunderground.com, which at the time of submission ranked 39683 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/11/2007. It is...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart 4.0 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 include/payment/payflowpro.php, 2 global.php, or 3 libsecure.php, different vectors than CVE-2007-2070...
CVE-2007-2474
CVE-2007-2474 involves multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart 4.0. The issue allows remote attackers to execute arbitrary PHP code via a URL in the abs_path parameter targeting files such as include/payment/payflow_pro.php, global.php, or lib...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart before 3.5.1 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 index.php or 2 checkout.php...
CVE-2007-2070
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart before 3.5.1 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 index.php or 2 checkout.php...
CVE-2007-2070
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart before 3.5.1 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 index.php or 2 checkout.php...
CVE-2007-2070
Turnkey Web Tools SunShop Shopping Cart is affected by CVE-2007-2070 due to multiple PHP remote file inclusion vulnerabilities. The flaw allows an attacker to trigger arbitrary PHP code execution by supplying a crafted URL in the abs_path parameter to index.php or checkout.php. The issue affects ...
SunShop Shopping Cart 3.5 - 'abs_path' Remote File Inclusion
sunshop 4 index.php Remote File Include Vulnerability ----------------------------------------------------------------------------------------- scripts : SunShop v3.5 Discovered By : irvian scripts site : http://www.turnkeywebtools.com/sunshop/ Thanks To : hitamputih nyubicrew patihack special To...
PHP Simple Shop <= 2.0 (abs_path) Remote File Inclusion Vulnerability
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion...
Echo Security Advisory 2006.44
ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion ------------------------------------------------------------------------------ Author : Ahmad Maulana a.k.a Matdhule Date Found : August...
CVE-2006-4051
PHP remote file inclusion vulnerability in global.php in Turnkey Web Tools PHP Live Helper 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter...
CVE-2006-4052
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools PHP Simple Shop 2.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 admin/index.php, 2 admin/adminindex.php, 3 admin/adminglobal.php, 4 admin/login.php, 5 admin/menu.ph...
CVE-2006-4051
PHP remote file inclusion vulnerability in global.php in Turnkey Web Tools PHP Live Helper 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter...
CVE-2006-4051
The CVE-2006-4051 entry describes a PHP remote file inclusion in Turnkey Web Tools PHP Live Helper (versions 2.0 and earlier) where the abs_path parameter is not properly sanitized, allowing an attacker to supply a URL and execute arbitrary PHP code on the affected server. Connected advisories an...
CVE-2006-4052
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools PHP Simple Shop 2.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 admin/index.php, 2 admin/adminindex.php, 3 admin/adminglobal.php, 4 admin/login.php, 5 admin/menu.ph...
CVE-2006-4052
Turnkey Web Tools PHP Simple Shop 2.0 and earlier are affected by multiple PHP remote file inclusion vulnerabilities. The abs_path parameter in admin/index.php, admin/adminindex.php, admin/adminglobal.php, admin/login.php, admin/menu.php, and admin/header.php can be used to supply a URL that lead...
[ECHO_ADV_44$2006] PHP Simple Shop <= 2.0 (abs_path) Remote File Inclusion
ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion ------------------------------------------------------------------------------ Author : Ahmad Maulana a.k.a Matdhule Date Found : August...
PHP Live Helper <= 2.0 (abs_path) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ===================================================================== PHP Live Helper = 2.0 abspath Remote File Inclusion Vulnerability ===================================================================== \ /\ \ / | \ \ | / \ // / | \ |...
PHP Simple Shop 2.0 - abs_path Remote File Inclusion
PHP Simple Shop 2.0 - abspath Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion...