Searching include oncephp software vulnerabilities

IIS has the #exec function enabled for Server S

function | enabled | Include | Server | #exec | Side | has | IIS |

IIS has the #exec function enabled for Server Side Include (SSI) files.


config_inc2.php in Mantis before 0.17.4 allows

config_inc2php | before | Mantis |

config_inc2.php in Mantis before 0.17.4 allows remote attackers to execute arbitrary code or read arbitrary files via the parameters (1) g_bottom_include_page, (2) g_top_include_page, (3) g_css_include_file, (4) g_meta_include_file, or (5) a cookie.


PHP remote file inclusion vulnerability in incl

include_oncephp | vulnerability | osCommerce | inclusion | remote | file | PHP |

PHP remote file inclusion vulnerability in include_once.php in osCommerce (a.k.a. Exchange Project) 2.1 allows remote attackers to execute arbitrary PHP code via the include_file parameter.


The php_check_safe_mode_include_dir function in

php_check_safe_mode_include_dir | fopen_wrappersc | function | success | returns | value | PHP | 43x |

The php_check_safe_mode_include_dir function in fopen_wrappers.c of PHP 4.3.x returns a success value (0) when the safe_mode_include_dir variable is not specified in configuration, which differs from the previous failure value and may allow remote attackers to exploit file include vulnerabilities in PHP applications.


PHP remote file include vulnerability in Derek

vulnerability | Ashauer | ashNews | include | remote | Derek | file | PHP |

PHP remote file include vulnerability in Derek Ashauer ashNews 0.83 allows remote attackers to include and execute arbitrary remote files via a URL in the pathtoashnews parameter to (1) ashnews.php and (2) ashheadlines.php.


PHP remote file include vulnerability in Yawp l

vulnerability | include | library | remote | Yawp | file | PHP |

PHP remote file include vulnerability in Yawp library 1.0.6 and earlier, as used in YaWiki and possibly other products, allows remote attackers to include arbitrary files via the _Yawp[conf_path] parameter.


PHP file include vulnerability in download.php

vulnerability | PHPSimplicity | downloadphp | Simplicity | include | Upload | before | file | PHP |

PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload before 1.3.1 allows remote attackers to include arbitrary local and remote files via the language parameter and a terminating null ("%00") characters.


docutils in Zope 2.6, 2.7 before 2.7.8, and 2.8

docutils | before | Zope |

docutils in Zope 2.6, 2.7 before 2.7.8, and 2.8 before 2.8.2 allows remote attackers to include arbitrary files via include directives in RestructuredText functionality.


PHP file include vulnerability in SocketKB 1.1.

vulnerability | SocketKB | include | file | PHP |

PHP file include vulnerability in SocketKB 1.1.0 and earlier allows remote attackers to include arbitrary local files via the __f parameter.


PHP remote file include vulnerability in (1) in

vulnerability | include | remote | file | PHP |

PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote attackers to execute arbitrary code via a URL in the catalogDocumentRoot parameter.


PHP remote file inclusion vulnerability in comm

vulnerability | include_path | initialized | arbitrary | attackers | Ecommerce | Intensive | inclusion | commonphp | variable | include | before | remote | allows | being | which | iUser | Point | files | used | file | URL | via | PHP | not |

PHP remote file inclusion vulnerability in common.php in Intensive Point iUser Ecommerce allows remote attackers to include arbitrary files via a URL in the include_path variable, which is not initialized before being used.


PHP remote file include vulnerability in common

vulnerability | parameters | statements | attackers | parameter | arbitrary | commonphp | possibly | txtForum | loginphp | scripts | related | include | earlier | execute | 104-dev | remote | allows | other | code | skin | file | PHP | via | URL |

PHP remote file include vulnerability in common.php in txtForum 1.0.4-dev and earlier allows remote attackers to include and execute arbitrary PHP code via a URL in the skin parameter to login.php, and possibly other parameters to other PHP scripts, related to include statements in common.php.


Multiple SQL injection vulnerabilities in DSNew

magic_quotes_gpc | vulnerabilities | DSNewsletter | attackers | arbitrary | parameter | injection | commands | disabled | Multiple | execute | remote | email | allow | SQL | via |

Multiple SQL injection vulnerabilities in DSNewsletter 1.0, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the email parameter to (1) include/sub.php, (2) include/confirm.php, or (3) include/unconfirm.php.


PHP remote file include vulnerability in PageCo

KnowledgebasePublisher | PageControllerphp | vulnerability | parameter | arbitrary | attackers | execute | include | remote | allows | code | file | dir | PHP | via | URL |

PHP remote file include vulnerability in PageController.php in KnowledgebasePublisher 1.2 allows remote attackers to include and execute arbitrary PHP code via a URL in the dir parameter.


Directory traversal vulnerability in include_la

include_langphp | vulnerability | Directory | traversal | Phaos |

Directory traversal vulnerability in include_lang.php in Phaos 0.9.2 allows remote attackers to include arbitrary local files via ".." sequences in the lang parameter.


Multiple PHP remote file inclusion vulnerabilit

commonIncludePath | vulnerabilities | Valdersoft | attackers | inclusion | parameter | arbitrary | Multiple | Shopping | execute | earlier | remote | allow | code | Cart | file | PHP | via | URL |

Multiple PHP remote file inclusion vulnerabilities in Valdersoft Shopping Cart 3.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the commonIncludePath parameter to (1) admin/include/common.php, (2) include/common.php, or (3) common_include/common.php.


Multiple PHP remote file inclusion vulnerabilit

vulnerabilities | inclusion | attackers | arbitrary | parameter | Multiple | execute | Include | PhpNews | remote | allow | file | code | PHP | via |

Multiple PHP remote file inclusion vulnerabilities in PhpNews 1.0 allow remote attackers to execute arbitrary PHP code via the Include parameter to (1) Include/lib.inc.php3 and (2) Include/variables.php3.


Multiple PHP remote file inclusion vulnerabilit

vulnerabilities | e-commerce | inclusion | Multiple | system | remote | WORK | file | PHP |

Multiple PHP remote file inclusion vulnerabilities in WORK system e-commerce 3.0.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the g_include parameter to include/include_top.php and certain other PHP scripts.


footer.php in PunBB 1.2.14 and earlier allows r

footerphp | PunBB |

footer.php in PunBB 1.2.14 and earlier allows remote attackers to include local files in include/user/ via a cross-site scripting (XSS) attack, or via the pun_include tag, as demonstrated by use of admin_options.php to execute PHP code from an uploaded avatar file.


PHP remote file inclusion vulnerability in incl

include/include_streamincphp | vulnerability | include_path | phpBrowse | attackers | parameter | arbitrary | inclusion | CodeWand | execute | remote | allows | code | file | PHP | via | URL |

PHP remote file inclusion vulnerability in include/include_stream.inc.php in CodeWand phpBrowse allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter.


Software vulnerabilities results 1 to 20 of 574     
Page: 12345...29