[CLOSE] OSVDB ID : 54546 - Disclosed: 2009-05-15

Description:

Rama Zaiten CMS contains a flaw that allows a remote attacker to download local files outside of the web path. The issue is due to the 'download.php' not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'file' variable(s).

[CLOSE] OSVDB ID : 84051 - Disclosed: 2012-07-08

Description:

Rama Zeiten CMS contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the download.php script not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the 'file' parameter. This directory traversal attack would allow the attacker to gain access to arbitrary files.

[CLOSE] OSVDB ID : 30918 - Disclosed: 2006-10-12

Description:

RamaCMS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'adodb.inc.php' script not properly sanitizing user input supplied to the 'path' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 21961 - Disclosed: 2005-12-21

Description:

RAMSite R|1 CMS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'searchfield' parameter upon submission to the 'Search Module' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 87899 - Disclosed: 2012-03-07

Description:

Ramui Forum contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'query' parameter upon submission to the gb/user/index.php script. This may allow a user to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 49635 - Disclosed: 2008-08-24

Description:

(Description Provided by CVE) : getipacctg in rancid 2.3.2~a8 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/ipacct.#####.prefixes, (2) /tmp/ipacct.#####.sorted, (3) /tmp/ipacct.#####.pl, and (4) /tmp/ipacct.##### temporary files.

[CLOSE] OSVDB ID : 88788 - Disclosed: 1990-12-19

Description:

Rand Mail Handler is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows a local attacker to inject custom code that will be run with the privilege of the program or user executing the program. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source. This can be done by tricking a user into opening an unspecified file from the local file system or a USB drive in some cases. This attack scenario is certainly possible, but rare.

[CLOSE] OSVDB ID : 59376 - Disclosed: 2009-10-20

Description:

(Description Provided by CVE) : Unspecified vulnerability in the Random Images (maag_randomimage) extension 1.6.4 and earlier for TYPO3 allows remote attackers to execute arbitrary shell commands via unspecified vectors.

[CLOSE] OSVDB ID : 32947 - Disclosed: 2007-01-23

Description:

(Description Provided by CVE) : Scriptsez Random PHP Quote 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password information via a direct request for pwd.txt.

[CLOSE] OSVDB ID : 88867 - Disclosed: 2013-01-02

Description:

Random Posts, Mp3 Player + ShareButton Plugin for WordPress contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a direct request for the rpost_mp3player_share.php script, which discloses the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 46391 - Disclosed: 2008-06-19

Description:

(Description Provided by CVE) : SQL injection vulnerability in Random Prayer (ste_prayer) 0.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors.

[CLOSE] OSVDB ID : 61278 - Disclosed: 2009-12-15

Description:

(Description Provided by CVE) : SQL injection vulnerability in the Random Prayer 2 (ste_prayer2) extension 0.0.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

[CLOSE] OSVDB ID : 61277 - Disclosed: 2009-12-15

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the Random Prayer 2 (ste_prayer2) extension 0.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

[CLOSE] OSVDB ID : 48280 - Disclosed: 2008-09-19

Description:

(Description Provided by CVE) : SQL injection vulnerability in the Random Prayer 2 (ste_prayer2) extension before 0.0.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

[CLOSE] OSVDB ID : 61674 - Disclosed: 2009-12-09

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the Randomizer module 5.x through 5.x-1.0 and 6.x through 6.x-1.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

[CLOSE] OSVDB ID : 21213 - Disclosed: 2005-11-28

Description:

randshop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the /themes/kategorie/index.php script not properly sanitizing user-supplied input to the 'kategorieid' and 'katid' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 28182 - Disclosed: 2006-07-01

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in includes/header.inc.php in Randshop 1.1.1 allows remote attackers to execute arbitrary PHP code via the dateiPfad parameter.

[CLOSE] OSVDB ID : 28184 - Disclosed: 2006-07-06

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php in Randshop before 1.2 allows remote attackers to execute arbitrary PHP code via the dateiPfad parameter, a different vector than CVE-2006-3375.

[CLOSE] OSVDB ID : 28183 - Disclosed: 2006-07-04

Description:

(Description Provided by CVE) : PHP remote file inclusion vulnerability in index.php in Randshop 1.2 and earlier, including 0.9.3, allows remote attackers to execute arbitrary PHP code via a URL in the incl parameter.

[CLOSE] OSVDB ID : 51534 - Disclosed: 2009-01-16

Description:

(Description Provided by CVE) : Katy Whitton RankEm stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing credentials via a direct request for database/topsites.mdb.

[CLOSE] OSVDB ID : 50608 - Disclosed: 2008-12-05

Description:

RankEm contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the processlogin.asp script not properly sanitizing user-supplied input to the txtusername and txtpassword parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50858 - Disclosed: 2008-12-05

Description:

RankEm contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'rankup.asp' script not properly sanitizing user-supplied input to the 'siteID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 51533 - Disclosed: 2009-01-16

Description:

RankEm contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'siteID' parameters upon submission to the 'rankup.asp' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 1551 - Disclosed: 2000-09-11

Description:

(Description Provided by CVE) : The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field.

[CLOSE] OSVDB ID : 45233 - Disclosed: 2008-05-15

Description:

(Description Provided by CVE) : The admin.php file in Rantx allows remote attackers to bypass authentication and gain privileges by setting the logininfo cookie to "<?php" or "?>", which is present in the password file and probably passes an insufficient comparison.

[CLOSE] OSVDB ID : 30543 - Disclosed: 2006-11-19

Description:

Rapid Classified contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'dosearch' variable upon submission to the advsearch.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 52306 - Disclosed: 2008-12-02

Description:

(Description Provided by CVE) : Rapid Classified 3.1 and 3.15 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to cldb.mdb.

[CLOSE] OSVDB ID : 50732 - Disclosed: 2007-11-10

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 30542 - Disclosed: 2006-11-19

Description:

Rapid Classified contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'name' or 'id' variables upon submission to the 'reply.asp' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 30541 - Disclosed: 2006-11-19

Description:

Rapid Classified contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'SH1' variable upon submission to the search.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.