TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
249
'pollvars[lang]' variables, which would allows remote attacker to read arbitrary files or inject arbitrary local PHP files.
No remedy available as of August, 2008.
Signature ID: 1833
WEB-PHP Advanced Poll admin_license.php access Vulnerability
Threat Level: Information
Industry ID: CVE-2003-1180 Bugtraq: 8890 Nessus: 11487
Signature Description: Advanced poll is a freely available, open source PHP web application. It is available for the
Unix, Linux, and Microsoft operating systems. Advanced Poll version 2.0.2 could allow a remote attacker to include
malicious PHP files. By sending a specially-crafted URL request to the admin_license.php script using 'base_path' or
'pollvars[lang]' variables, which would allows remote attacker to read arbitrary files or inject arbitrary local PHP files.
No remedy available as of August, 2008.
Signature ID: 1834
WEB-PHP Advanced Poll admin_logout.php access Vulnerability
Threat Level: Information
Industry ID: CVE-2003-1180 Bugtraq: 8890 Nessus: 11487
Signature Description: Advanced poll is a freely available, open source PHP web application. It is available for the
Unix, Linux, and Microsoft operating systems. Advanced Poll version 2.0.2 could allow a remote attacker to include
malicious PHP files. By sending a specially-crafted URL request to the admin_logout.php script using 'base_path' or
'pollvars[lang]' variables, which would allows remote attacker to read arbitrary files or inject arbitrary local PHP files.
No remedy available as of August, 2008.
Signature ID: 1835
WEB-PHP Advanced Poll admin_password.php access Vulnerability
Threat Level: Information
Industry ID: CVE-2003-1180 Bugtraq: 8890 Nessus: 11487
Signature Description: Advanced poll is a freely available, open source PHP web application. It is available for the
Unix, Linux, and Microsoft operating systems. Advanced Poll version 2.0.2 could allow a remote attacker to include
malicious PHP files. By sending a specially-crafted URL request to the admin_password.php script using 'base_path' or
'pollvars[lang]' variables, which would allows remote attacker to read arbitrary files or inject arbitrary local PHP files.
No remedy available as of August, 2008.
Signature ID: 1836
WEB-PHP Advanced Poll admin_preview.php access Vulnerability
Threat Level: Information
Industry ID: CVE-2003-1180 Bugtraq: 8890 Nessus: 11487
Signature Description: Advanced poll is a freely available, open source PHP web application. It is available for the
Unix, Linux, and Microsoft operating systems. Advanced Poll version 2.0.2 could allow a remote attacker to include
malicious PHP files. By sending a specially-crafted URL request to the admin_preview.php script using 'base_path' or
'pollvars[lang]' variables, which would allows remote attacker to read arbitrary files or inject arbitrary local PHP files.
No remedy available as of August, 2008.
Signature ID: 1837
WEB-PHP Advanced Poll admin_settings.php access Vulnerability
Threat Level: Information
Industry ID: CVE-2003-1180 Bugtraq: 8890 Nessus: 11487
Signature Description: Advanced poll is a freely available, open source PHP web application. It is available for the
Unix, Linux, and Microsoft operating systems. Advanced Poll version 2.0.2 could allow a remote attacker to include