Mahmood_ali

69 exploits Active since Jul 2005
CVE-2007-1697 EXPLOITDB text WRITEUP
Philex < 0.2.3 - Remote File Inclusion via CssFile Parameter
PHP remote file inclusion vulnerability in header.inc.php in Philex 0.2.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CssFile parameter.
CVE-2007-0700 EXPLOITDB text WORKING POC
Gsylvain35 Portail Web - Path Traversal
Directory traversal vulnerability in index.php in Guernion Sylvain Portail Web Php (aka Gsylvain35 Portail Web, PwP) allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter. NOTE: this issue was later reported for 2.5.1.1.
CVE-2007-4640 EXPLOITDB python WORKING POC
Pakupaku CMS < 0.4 - Unauthenticated Arbitrary File Upload via index.php Uploads Action
Unrestricted file upload vulnerability in index.php in Pakupaku CMS 0.4 and earlier allows remote attackers to upload and execute arbitrary PHP files in uploads/ via an Uploads action.
CVE-2007-2091 EXPLOITDB text WRITEUP
tsdisplay4xoops 0.1 - Remote Code Execution via xoops_url Parameter
PHP remote file inclusion vulnerability in blocks/tsdisplay4xoops_block2.php in tsdisplay4xoops (TSD4XOOPS, aka the TeamSpeak display module) 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the xoops_url parameter.
CVE-2007-3289 EXPLOITDB text WRITEUP
WiwiMod 0.4 for XOOPS - Remote File Inclusion via spaw_root Parameter
PHP remote file inclusion vulnerability in spaw/spaw_control.class.php in the WiwiMod 0.4 module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a duplicate of CVE-2006-4656.
CVE-2007-3057 EXPLOITDB html WORKING POC
XOOPS icontent_module 4.5 - Remote File Inclusion via spaw_root Parameter
PHP remote file inclusion vulnerability in include/wysiwyg/spaw_control.class.php in the icontent 4.5 module for XOOPS allows remote attackers to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: this issue is probably a duplicate of CVE-2006-4656.
CVE-2007-2426 EXPLOITDB text WRITEUP
myGallery < 1.4b4 - Remote File Inclusion via myPath Parameter
PHP remote file inclusion vulnerability in myfunctions/mygallerybrowser.php in the myGallery 1.4b4 and earlier plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the myPath parameter.
CVE-2007-2570 EXPLOITDB text WRITEUP
Wikivi5 - Remote File Inclusion via sous_rep Parameter
PHP remote file inclusion vulnerability in handlers/page/show.php in Wikivi5 allows remote attackers to execute arbitrary PHP code via a URL in the sous_rep parameter.
CVE-2007-0591 EXPLOITDB text WRITEUP
Vu Le An Virtual Path 1.0 - Remote File Inclusion via phpbb_root_path Parameter
PHP remote file inclusion vulnerability in configure.php in Vu Le An Virtual Path (VirtualPath) 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
CVE-2007-2934 EXPLOITDB text WORKING POC
Vistered Little <1.6a - Path Traversal
Directory traversal vulnerability in skins/common.css.php in Vistered Little 1.6a allows remote attackers to read arbitrary files via a .. (dot dot) in the skin parameter.
CVE-2007-2067 EXPLOITDB text WRITEUP
Marco Antonio Islas Cruz WebSlider 0.6 - RCE
Multiple PHP remote file inclusion vulnerabilities in Marco Antonio Islas Cruz Web Slider (WebSlider) 0.6 allow remote attackers to execute arbitrary PHP code via a URL in the path parameter to (1) index.php, (2) modules/pdf.php, (3) plugins/highlight.php, or (4) include/modules.php.
CVE-2007-2307 EXPLOITDB text WRITEUP
WebKalk2 1.9.0 - Remote File Inclusion via Absolute Path Parameter
PHP remote file inclusion vulnerability in engine/engine.inc.php in WebKalk2 1.9.0 allows remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter.
CVE-2007-0300 EXPLOITDB text WRITEUP
tlm_cms < 1.1 - Remote File Inclusion via chemin Parameter
PHP remote file inclusion vulnerability in i-accueil.php in TLM CMS 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the chemin parameter.
CVE-2007-0359 EXPLOITDB text WRITEUP
Uberghey CMS 0.3.1 - Remote File Inclusion via frontpage.php setup_folder Parameter
PHP remote file inclusion vulnerability in frontpage.php in Uberghey CMS 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the setup_folder parameter.
CVE-2007-2271 EXPLOITDB text WORKING POC
USP FOSS Distribution 1.01 - Directory Traversal via dnld Parameter
Directory traversal vulnerability in Rajneel Lal TotaRam USP FOSS Distribution 1.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the dnld parameter.
CVE-2007-2597 EXPLOITDB text WORKING POC
telltarget_cms < 1.3.3 - Remote File Inclusion via Multiple Parameters
Multiple PHP remote file inclusion vulnerabilities in telltarget CMS 1.3.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) ordnertiefe parameter to site_conf.php; or the (2) tt_docroot parameter to (a) class.csv.php, (b) produkte_nach_serie.php, or (c) ref_kd_rubrik.php in functionen/; (d) hg_referenz_jobgalerie.php, (e) surfer_anmeldung_NWL.php, (f) produkte_nach_serie_alle.php, (g) surfer_aendern.php, (h) ref_kd_rubrik.php, or (i) referenz.php in module/; or (j) 1/lay.php or (k) 3/lay.php in standard/.
CVE-2007-2185 EXPLOITDB text WRITEUP
Supasite 1.23b - Remote Code Execution via supa[db_path] or supa[include_path] Parameter
Multiple PHP remote file inclusion vulnerabilities in Supasite 1.23b allow remote attackers to execute arbitrary PHP code via a URL in the supa[db_path] parameter to (1) common_functions.php, (2) admin_auth_cookies.php, (3) admin_mods.php, (4) admin_news.php, (5) admin_topics.php, (6) admin_users.php, (7) admin_utilities.php, (8) site_comment.php, or (9) site_news.php; or the supa[include_path] parameter to (10) admin_settings.php or (11) backend_site.php.
CVE-2007-3370 EXPLOITDB text WRITEUP
Sun Board 1.00.00 Alpha - Remote File Inclusion via sunPath or dir Parameter
Multiple PHP remote file inclusion vulnerabilities in Sun Board 1.00.00 Alpha allow remote attackers to execute arbitrary PHP code via a URL in (1) the sunPath parameter to include.php or (2) the dir parameter to skin/board/default/doctype.php.
CVE-2007-1636 EXPLOITDB perl WORKING POC
RoseOnlineCMS 3 B1 - Directory Traversal via op Parameter
Directory traversal vulnerability in index.php in RoseOnlineCMS 3 B1 allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the op parameter, as demonstrated by injecting PHP code into Apache log files via the URL and User-Agent HTTP header.
CVE-2007-2156 EXPLOITDB text WRITEUP
rezervi_generic < 0.9 - Remote File Inclusion via root Parameter
Multiple PHP remote file inclusion vulnerabilities in Rezervi Generic 0.9 allow remote attackers to execute arbitrary PHP code via a URL in the root parameter to (1) datumVonDatumBis.inc.php, (2) footer.inc.php, (3) header.inc.php, and (4) stylesheets.php in templates/; and (5) wochenuebersicht.inc.php, (6) monatsuebersicht.inc.php, (7) jahresuebersicht.inc.php, and (8) tagesuebersicht.inc.php in belegungsplan/.
CVE-2007-1801 EXPLOITDB perl WORKING POC
sBLOG 0.7.3 Beta - Directory Traversal and Remote Code Execution via conf_lang_default Parameter
Directory traversal vulnerability in inc/lang.php in sBLOG 0.7.3 Beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf_lang_default parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by inc/lang.php.
CVE-2008-1645 EXPLOITDB text WORKING POC
phpSpamManager 0.53 beta - Path Traversal
Directory traversal vulnerability in body.php in phpSpamManager (phpSM) 0.53 beta allows remote attackers to read arbitrary local files via a .. (dot dot) in the filename parameter.
CVE-2007-2540 EXPLOITDB text WRITEUP
PMECMS <1.0 - Remote Code Execution
Multiple PHP remote file inclusion vulnerabilities in PMECMS 1.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the config[pathMod] parameter to index.php in (1) mod/image/, (2) mod/liens/, (3) mod/liste/, (4) mod/special/, or (5) mod/texte/.
CVE-2007-0307 EXPLOITDB text WRITEUP
Poplar Gedcom Viewer < 2.0 - Remote File Inclusion via env[rootPath] Parameter
PHP remote file inclusion vulnerability in include/common.php in Poplar Gedcom Viewer 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the env[rootPath] parameter.
EIP-2026-111351 EXPLOITDB text WRITEUP
PLS-Bannieres 1.21 - 'Bannieres.php' Remote File Inclusion