#SQLITEMANAGER LOCAL FILE INCLUSION CODE#
The ‘document’ parameter of PDS Vista 7’s /application/documents/display.aspx page is vulnerable to a Local File Inclusion vulnerability which allows an low-privileged authenticated attacker to leak the configuration files and source code of the web application.
Systematic FIX Adapter (ALFAFX) 2.4.0.25 allows remote file inclusion via a UNC share pathname, and also allows absolute path traversal to local pathnames.Ī local file inclusion (LFI) vulnerability in D-Link DIR 819 v1.06 allows attackers to cause a Denial of Service (DoS) or access sensitive server information via manipulation of the getpage parameter in a crafted web request.Ĭuppa CMS v1.0 was discovered to contain a local file inclusion (LFI) vulnerability via the component /templates/default/html/windows/right.php. This vulnerability is exploitable when the directive allow_url_include is set to On. RegisterFont in FontMetrics.php in Dompdf before 2.0.1 allows remote file inclusion because a URI validation failure does not halt font registration, as demonstrated by a rule.Ī remote file inclusion (RFI) vulnerability in Simple College Website v1.0 allows attackers to execute arbitrary code via a crafted PHP file. An issue was discovered in EyesOfNetwork (EON) through 5.3.11.
0 kommentar(er)
