Total
6472 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2008-4718 | 1 X7 Group | 1 X7 Chat | 2024-08-07 | N/A |
Directory traversal vulnerability in help/mini.php in X7 Chat 2.0.1 A1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the help_file parameter, a different vector than CVE-2006-2156. | ||||
CVE-2008-4741 | 1 Far-php | 1 Far-php | 2024-08-07 | N/A |
Directory traversal vulnerability in index.php in FAR-PHP 1.00, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the c parameter. | ||||
CVE-2008-4758 | 1 Php-daily | 1 Php-daily | 2024-08-07 | N/A |
Directory traversal vulnerability in download_file.php in PHP-Daily allows remote attackers to read arbitrary local files via a .. (dot dot) in the fichier parameter. | ||||
CVE-2008-4702 | 1 Phpwebgallery | 1 Phpwebgallery | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in PhpWebGallery 1.3.4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) user[language] and (2) user[template] parameters to (a) init.inc.php, and (b) the user[language] parameter to isadmin.inc.php. | ||||
CVE-2008-4667 | 1 Arabcms | 1 Arabcms | 2024-08-07 | N/A |
Directory traversal vulnerability in rss.php in ArabCMS 2.0 beta 1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the rss parameter. | ||||
CVE-2008-4707 | 1 Sylvain Pasquet | 1 Bbzl Php | 2024-08-07 | N/A |
Directory traversal vulnerability in index.php in BbZL.PhP 0.92 allows remote attackers to access unauthorized directories via a .. (dot dot) in the lien_2 parameter. | ||||
CVE-2008-4592 | 1 Sportspanel | 1 Sports Clubs Web Portal | 2024-08-07 | N/A |
Directory traversal vulnerability in index.php in Sports Clubs Web Panel 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter. | ||||
CVE-2008-4602 | 1 Qualityunit | 1 Post Affiliate Pro | 2024-08-07 | N/A |
Directory traversal vulnerability in index.php in Post Affiliate Pro 2.0 allows remote authenticated users to read and possibly execute arbitrary local files via a .. (dot dot) in the md parameter. | ||||
CVE-2008-4626 | 1 Zirkon Box | 1 Yappa-ng | 2024-08-07 | N/A |
Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation (yappa-ng) 2.3.2 and possibly other versions through 2.3.3-beta0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the album parameter. | ||||
CVE-2008-4662 | 1 Lokicms | 1 Lokicms | 2024-08-07 | N/A |
Directory traversal vulnerability in admin.php in LokiCMS 0.3.4, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter. | ||||
CVE-2008-4712 | 1 Lnblog | 1 Lnblog | 2024-08-07 | N/A |
Directory traversal vulnerability in pages/showblog.php in LnBlog 0.9.0 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the plugin parameter. | ||||
CVE-2008-4632 | 1 Kure | 1 Kure | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in index.php in Kure 0.6.3, when magic_quotes_gpc is disabled, allow remote attackers to read and possibly execute arbitrary local files via a .. (dot dot) in the (1) post and (2) doc parameters. | ||||
CVE-2008-4668 | 1 Joomla | 2 Com Imagebrowser, Joomla | 2024-08-07 | N/A |
Directory traversal vulnerability in the Image Browser (com_imagebrowser) 0.1.5 component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php. | ||||
CVE-2008-4490 | 1 Phpabook | 1 Phpabook | 2024-08-07 | N/A |
Directory traversal vulnerability in config.inc.php in phpAbook 0.8.8b and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the userInfo cookie. | ||||
CVE-2008-4526 | 1 Customcms | 1 Ccms | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in CCMS 3.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the skin parameter to (1) index.php, (2) forums.php, (3) admin.php, (4) header.php, (5) pages/story.php and (6) pages/poll.php. | ||||
CVE-2008-4528 | 1 Phlatline | 1 Personal Information Manager | 2024-08-07 | N/A |
Directory traversal vulnerability in notes.php in Phlatline's Personal Information Manager (pPIM) 1.01 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the id parameter in an edit action. | ||||
CVE-2008-4522 | 1 Jesse-web | 1 Jmweb Mp3 Music Audio Search And Download Script | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in JMweb MP3 Music Audio Search and Download Script allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the src parameter to (1) listen.php and (2) download.php. | ||||
CVE-2008-4519 | 1 Fastpublish | 1 Fastpublish Cms | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in Fastpublish CMS 1.9999 d allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the target parameter to (1) index2.php and (2) index.php. | ||||
CVE-2008-4499 | 1 Php Web Explorer | 1 Php Web Explorer Lite | 2024-08-07 | N/A |
Multiple directory traversal vulnerabilities in PHP Web Explorer 0.99b and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) refer parameter to main.php and the (2) file parameter to edit.php. | ||||
CVE-2008-4483 | 1 Crux Software | 1 Gallery | 2024-08-07 | N/A |
Directory traversal vulnerability in index.php in Crux Gallery 1.32 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the theme parameter. |