FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
d9dc2697-dadf-11da-912f-00123ffe8333	phpwebftp -- "language" Local File Inclusion Secunia reports: phpWebFTP have a vulnerability, which can be exploited by malicious people to disclose sensitive information. Input passed to the "language" parameter in index.php isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from local resources. Successful exploitation requires that "magic_quotes_gpc" is disabled. Discovery 2006-04-18 Entry 2006-05-03 phpwebftp < 3.3 CVE-2006-1812 CVE-2006-1813 https://sourceforge.net/forum/forum.php?forum_id=566199 http://secunia.com/advisories/19706/

VuXML ID

Description

d9dc2697-dadf-11da-912f-00123ffe8333

phpwebftp -- "language" Local File Inclusion

Secunia reports:

phpWebFTP have a vulnerability, which can be exploited by malicious people to disclose sensitive information.

Input passed to the "language" parameter in index.php isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from local resources.

Successful exploitation requires that "magic_quotes_gpc" is disabled.

Discovery 2006-04-18
Entry 2006-05-03
phpwebftp

< 3.3

CVE-2006-1812
CVE-2006-1813
https://sourceforge.net/forum/forum.php?forum_id=566199
http://secunia.com/advisories/19706/