This vulnerability allows remote attackers to include arbitrary files from the server, which could lead to remote code execution.
The vulnerability allows an attacker to disclose files remotely by exploiting the force_download.php file in Zomplog v3.8. By manipulating the 'file' parameter in the URL, an attacker can access files on the server that are not intended to be publicly accessible.
The proprietary Impero protocol used by Impero Education Pro is vulnerable to a remote code execution (RCE) attack. The protocol is encrypted with AES-128 CBC using a hardcoded key and initialization vector (IV) derived from the string 'Imp3ro'. ISO10126 padding is used. After authentication, an attacker can send commands to the server to execute arbitrary code on the target system. The attack works on Windows clients and can run commands as the SYSTEM user. The server logs the commands executed, but the client responsible is recorded as 'unknown'.
The 'time' parameter in the 'get_messages' function is not properly escaped, leading to a SQL injection vulnerability. An attacker can manipulate the 'time' parameter to inject malicious SQL code and retrieve sensitive data from the database.
The JoomlaPack component version 1.0.4a2 is vulnerable to remote file inclusion. The vulnerability exists in the CAltInstaller.php file, where the mosConfig_absolute_path parameter is not properly sanitized, allowing an attacker to include arbitrary files from remote servers. This can lead to remote code execution and compromise of the affected system.
The Anthologia 0.5.2 software is vulnerable to remote file inclusion. The vulnerability can be exploited by an attacker by including a malicious file using the 'ads_file' parameter in the index.php page. This allows the attacker to execute arbitrary code on the target server.
The tsdisplay4xoops version 0.1 has a remote file inclusion vulnerability in the tsdisplay4xoops_block2.php file. An attacker can exploit this vulnerability by injecting malicious code through the xoops_url parameter, which can lead to remote code execution.
This exploit targets KMPlayer version 3.9.1.136 and allows for a Unicode buffer overflow, bypassing ASLR. The exploit is written in Python and contains a shellcode payload.
Chatness <= 2.5.3 is affected by two vulnerabilities. The first vulnerability is an authentication bypass in /admin/options.php, where the script fails to verify if the user is an administrator and displays the administrator's username and password in plain text. The second vulnerability is an arbitrary code execution in /admin/save.php and /index.php, where an attacker can overwrite foot.html or head.html with arbitrary PHP code that will be executed when included by index.php.
The vulnerability exists in the 'Header.php' file of RicarGBooK 1.2.1. It allows an attacker to include arbitrary files from the server by manipulating the 'lang' cookie parameter. This can lead to unauthorized access to sensitive files or remote code execution.