1297 matches found
free QBoard 1.1 features.php qb_path Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18780/info Plume CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows the attacker to execute arbitrary...
PHP Web Explorer 0.99b edit.php file Parameter Traversal Local File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/31595/info PHP Web Explorer is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal string...
Dotproject 2.0 /includes/session.php baseDir Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/16648/info Dotproject is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to includ...
ISPConfig 2.2.2/2.2.3 Session.INC.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17909/info ISPConfig is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary...
GenesisTrader 1.0 form.php Arbitrary File Source Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/21595/info GenesisTrader is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input. These issues include multiple information-disclosure...
Jupiter CMS 1.1.4/1.1.5 modules/mass-email.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/20048/info Jupiter CMSA is prone to multiple input-validation vulnerabilities, including cross-site scripting, SQL-injection, and arbitrary file-upload issues, because the application fails to sanitize user-supplied input...
RunCMS 1.x Avatar Arbitrary File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20874/info RunCMS is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process...
MiraksGalerie 2.62 galsecurity.lib.php listconfigfile[0] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/18313/info MiraksGalerie is prone to multiple remote file-include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to...
MyBloggie 2.1.x Mybloggie_Root_Path Parameter Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/19449/info MyBloggie is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing...
CH-CMS.ch 2 Multiple Arbitrary File Upload Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/39888/info CH-CMS.ch is prone to multiple arbitrary-file-upload vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to upload arbitrary code and run it ...
Insanely Simple Blog 0.4/0.5 Blog Anonymous Blog Entry XSS
No description provided by source. source: http://www.securityfocus.com/bid/24934/info Insanely Simple Blog is prone to multiple input-validation vulnerabilities, including cross-site scripting, HTML-injection, and SQL-injection issues, because the application fails to properly sanitize...
DrBenHur.com DBHcms 1.1.4 'dbhcms_core_dir' Parameter Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37498/info DrBenHur.com DBHcms is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing...
TurnkeyWebTools PHP Simple Shop 2.0 - Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/19382/info PHP Simple Shop is prone to multiple remote file-include vulnerabilities. An attacker can exploit these issues to execute arbitrary malicious PHP code in the context of the webserver process. This may facilitat...
PHP Polling Creator 1.03 Functions.inc.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20398/info PHP Polling Creator is affected by a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-sid...
Exponent CMS 0.96.5/ 0.96.6 iconspopup.php icodir Variable Traversal Arbitrary Directory Listing
No description provided by source. source: http://www.securityfocus.com/bid/23574/info Exponent CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...
Malleo 1.2.3 'admin.php' Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34588/info Malleo is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local files in the conte...
Chimaera Project Aterr 0.9.1 - Multiple Local File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/28861/info Aterr is prone to local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal strings to view files and...
SMBlog 1.2 Arbitrary PHP Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16905/info SMBlog is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitra...
KC Wiki 1.0 - minimal/wiki.php page Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/28074/info KC Wiki is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files containing...
JD-WordPress 2.0-1.0 RC 2 for Joomla wp-feed.php Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19209/info JD-WordPress for Joomla is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote files...