sphider sphider 1.3 rc1 vulnerabilities and exploits

(subscribe to this query)

PHP remote file inclusion vulnerability in admin/configset.php in Sphider 1.3 and previous versions, when register_globals is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the settings_dir parameter.

Sphider Sphider 1.3 Sphider Sphider 1.3 Rc1 Sphider Sphider 1.3 Rc2

1 EDB exploit

Multiple cross-site scripting (XSS) vulnerabilities in search.php in Sphider allow remote malicious users to inject arbitrary web script or HTML via (1) the PATH_INFO and (2) the category parameter.

Sphider Sphider 1.3 Sphider Sphider 1.3 Rc1 Sphider Sphider 1.3 Rc2 Sphider Sphider 1.3b

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook