ThE TiGeR - Security Researcher - Exploit Intelligence Platform

CVE-2007-2531 EXPLOITDB text WORKING POC

Berylium2 2003-08-18 - Remote File Inclusion via beryliumroot Parameter

PHP remote file inclusion vulnerability in berylium-classes.php in Berylium2 2003-08-18 allows remote attackers to execute arbitrary PHP code via a URL in the beryliumroot parameter.

View Code

CVE-2007-4744 EXPLOITDB text WORKING POC

AnyInventory 1.9.1 and 2.0 - Remote File Inclusion via DIR_PREFIX Parameter

PHP remote file inclusion vulnerability in environment.php in AnyInventory 1.9.1 and 2.0, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the DIR_PREFIX parameter.

View Code

CVE-2007-2634 EXPLOITDB text WORKING POC

aForum 1.32 - Remote File Inclusion via Header Parameter

PHP remote file inclusion vulnerability in common/errormsg.php in aForum 1.32 and possibly earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the header parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2007-2986 EXPLOITDB text WRITEUP

AdminBot MX 9.0.5 - Remote File Inclusion via ROOT Parameter

PHP remote file inclusion vulnerability in lib/live_status.lib.php in AdminBot MX 9.0.5 allows remote attackers to execute arbitrary PHP code via a URL in the ROOT parameter.

View Code