Searching mod php software vulnerabilities

The modified suexec program in cPanel, when con

configured | compiled | modified | mod_php | program | Apache | suexec | cPanel |

The modified suexec program in cPanel, when configured for mod_php and compiled for Apache 1.3.31 and earlier without mod_phpsuexec, allows local users to execute untrusted shared scripts and gain privileges, as demonstrated using untainted scripts such as (1) proftpdvhosts or (2) addalink.cgi, a different vulnerability than CVE-2004-0490.


PHP remote file inclusion vulnerability in /inc

/includes/kb_constantsphp | vulnerability | inclusion | Knowledge | remote | PHPbb | Base | file | Mod | PHP |

PHP remote file inclusion vulnerability in /includes/kb_constants.php in Knowledge Base Mod for PHPbb 2.0.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.


PHP remote file inclusion vulnerability in auct

auction\auction_commonphp | phpbb_root_path | vulnerability | arbitrary | attackers | parameter | inclusion | execute | Auction | allows | remote | phpBB | code | file | 13m | PHP | URL | mod | via |

PHP remote file inclusion vulnerability in auction\auction_common.php in Auction mod 1.3m for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.


Multiple PHP remote file inclusion vulnerabilit

vulnerabilities | componentphp | inclusion | Multiple | iManage | remote | file | CMS | PHP |

Multiple PHP remote file inclusion vulnerabilities in component.php in iManage CMS 4.0.12 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) articles.php, (2) contact.php, (3) displaypage.php, (4) faq.php, (5) mainbody.php, (6) news.php, (7) registration.php, (8) whosOnline.php, (9) components/com_calendar.php, (10) components/com_forum.php, (11) components/minibb/index.php, (12) components/minibb/bb_admin.php, (13) components/minibb/bb_plugins.php, (14) modules/mod_calendar.php, (15) modules/mod_browser_prefs.php, (16) modules/mod_counter.php, (17) modules/mod_online.php, (18) modules/mod_stats.php, (19) modules/mod_weather.php, (20) themes/bizz.php, (21) themes/default.php, (22) themes/simple.php, (23) themes/original.php, (24) themes/portal.php, (25) themes/purple.php, and other unspecified files.


PHP remote file inclusion vulnerability in mod_

mod_membre/inscriptionphp | vulnerability | PortailPHP | parameter | attackers | arbitrary | inclusion | execute | chemin | remote | allows | code | file | PHP | via | URL |

PHP remote file inclusion vulnerability in mod_membre/inscription.php in PortailPHP 1.7 allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter.


Multiple PHP remote file inclusion vulnerabilit

vulnerabilities | mambo-phpshop | inclusion | Multiple | Scroller | modules | Product | Module | remote | other | file | PHP |

Multiple PHP remote file inclusion vulnerabilities in the Product Scroller Module and other modules in mambo-phpshop (com_phpshop) for Mambo and Joomla! allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter in (1) mod_phpshop.php, (2) mod_phpshop_allinone.php, (3) mod_phpshop_cart.php, (4) mod_phpshop_featureprod.php, (5) mod_phpshop_latestprod.php, (6) mod_product_categories.php, (7) mod_productscroller.php, and (8) mosproductsnap.php.


PHP remote file inclusion vulnerability in somm

sommaire_adminphp | vulnerability | inclusion | PhpAlbum | remote | file | PHP |

PHP remote file inclusion vulnerability in sommaire_admin.php in PhpAlbum (mod_phpalbum) 2.15 for PortailPHP allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter, a different vector than CVE-2006-3922.


DeluxeBB 1.06 and earlier, when run on the Apac

DeluxeBB |

DeluxeBB 1.06 and earlier, when run on the Apache HTTP Server with the mod_mime module, allows remote attackers to execute arbitrary PHP code by uploading files with double extensions via the fileupload parameter in a newthread action in newpost.php.


PHP remote file inclusion vulnerability in zufa

zufallscodepartphp | phpbb_root_path | vulnerability | arbitrary | attackers | parameter | inclusion | AMAZONIA | execute | remote | allows | phpBB | code | file | PHP | URL | MOD | via |

PHP remote file inclusion vulnerability in zufallscodepart.php in AMAZONIA MOD for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.


PHP remote file inclusion in eventcal/mod_event

eventcal/mod_eventcalphp | lm_absolute_path | parameter | attackers | arbitrary | inclusion | execute | allows | remote | module | event | Limbo | code | file | URL | PHP | CMS | via |

PHP remote file inclusion in eventcal/mod_eventcal.php in the event module 1.0 for Limbo CMS allows remote attackers to execute arbitrary PHP code via a URL in the lm_absolute_path parameter.


PHP remote file inclusion vulnerability in incl

vulnerability | includephp | inclusion | Module | Roster | remote | file | PHP |

PHP remote file inclusion vulnerability in include.php in the Roster Module (character_roster) in Shadowed Portal 5.7 allows remote attackers to execute arbitrary PHP code via a URL in the mod_root parameter.


PHP remote file inclusion vulnerability in incl

includes/functions_mod_userphp | vulnerability | inclusion | Insert | remote | phpBB | file | User | PHP |

PHP remote file inclusion vulnerability in includes/functions_mod_user.php in phpBB Insert User 0.1.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.


PHP remote file inclusion vulnerability in incl

includes/functions_mod_userphp | vulnerability | inclusion | Import | remote | phpBB | Tools | file | Mod | PHP |

PHP remote file inclusion vulnerability in includes/functions_mod_user.php in phpBB Import Tools Mod 0.1.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.


Multiple PHP remote file inclusion vulnerabilit

vulnerabilities | PortailPhp | attackers | arbitrary | inclusion | parameter | Multiple | execute | chemin | remote | CLAIRE | Cedric | allow | file | code | PHP | via | URL |

Multiple PHP remote file inclusion vulnerabilities in Cedric CLAIRE PortailPhp 2 allow remote attackers to execute arbitrary PHP code via a URL in the chemin parameter to (1) mod_news/index.php, (2) mod_news/goodies.php, or (3) mod_search/index.php. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.


PHP remote file inclusion vulnerability in mod_

mod_flatmenuphp | vulnerability | inclusion | Flatmenu | remote | file | PHP |

PHP remote file inclusion vulnerability in mod_flatmenu.php in the Flatmenu 1.07 and earlier Mambo module allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.


PHP remote file inclusion vulnerability in mod_

mod_weatherphp | vulnerability | absolute_path | attackers | arbitrary | Ventouris | inclusion | parameter | execute | Antonis | Weather | allows | module | remote | Joomla | Mambo | file | code | PHP | via | URL |

PHP remote file inclusion vulnerability in mod_weather.php in the Antonis Ventouris Weather module for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter.


PHP remote file inclusion vulnerability in the

mosConfig_absolute_path | mod_as_categoryphp | vulnerability | attackers | arbitrary | AutoStand | inclusion | parameter | execute | earlier | module | remote | allows | Joomla | file | code | PHP | via | URL |

PHP remote file inclusion vulnerability in the AutoStand 1.1 and earlier module for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter to mod_as_category.php in (1) modules/mod_as_category/ or (2) modules/.


PHP remote file inclusion vulnerability in wate

vulnerability | watermarkphp | inclusion | remote | file | PHP |

PHP remote file inclusion vulnerability in watermark.php in the vm (aka Jean-Francois Laflamme) watermark 0.4.1 mod for Gallery allows remote attackers to execute arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter.


PHP local file inclusion vulnerability in gpg_p

gpg_pop_initphp | vulnerability | inclusion | G/PGP | local | file | PHP |

PHP local file inclusion vulnerability in gpg_pop_init.php in the G/PGP (GPG) Plugin before Saturday, July 07, 2007 for Squirrelmail allows remote attackers to include and execute arbitrary local files, related to the MOD parameter.


Unrestricted file upload vulnerability in mod/c

vulnerability | mod/contakphp | Unrestricted | attackers | arbitrary | parameter | execute | AuraCMS | files/ | places | upload | remote | allows | which | image | files | under | file | PHP | via |

Unrestricted file upload vulnerability in mod/contak.php in AuraCMS 2.1 allows remote attackers to upload and execute arbitrary PHP files via the image parameter, which places a file under files/.


Software vulnerabilities results 1 to 20 of 2942     
Page: 12345...148