漏洞分类 - 远程文件包含 - Remote File Inclusion - Seebug 漏洞平台

漏洞分类 — 远程文件包含

英文名字: Remote File Inclusion

漏洞详情：: 远程文件包含，简称 RFI，指服务利用程序文件包含函数包含远程文件，过滤不严导致可以包含服务器外的文件而导致问题产生。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-8158	2008-02-25		Portail Web Php <= 2.5.1.1 Multiple Inclusion Vulnerabilities		739 \| 0
SSV-8157	2008-02-25		php Download Manager <= 1.1 Local File Inclusion Vulnerability		1012 \| 0
SSV-8160	2008-02-25		phpUserBase 1.3b (unverified.inc.php) Remote File Inclusion Vulnerability		757 \| 0
SSV-8164	2008-02-25		Quinsonnas Mail Checker 1.55 (footer.php) RFI Vulnerability		735 \| 0
SSV-8161	2008-02-25		phpUserBase 1.3b (unverified.inc.php) Local File Inclusion Vulnerability		732 \| 0
SSV-8165	2008-02-25		phpProfiles 4.5.2 BETA (body_comm.inc.php) RFI Vulnerability		726 \| 0
SSV-8156	2008-02-23		Quantum Game Library 0.7.2c Remote File Inclusion Vulnerabilities		762 \| 0
SSV-8155	2008-02-23		phpQLAdmin 2.2.7 Multiple Remote File Inclusion Vulnerabilities		730 \| 0
SSV-8108	2008-02-15		artmedic weblog 1.0 Multiple Local File Inclusion Vulnerabilities		861 \| 0
SSV-8104	2008-02-15		LookStrike Lan Manager 0.9 Remote / Local File Inclusion Vulnerabilities		744 \| 0
SSV-8103	2008-02-15		Scribe <= 0.2 (index.php page) Local File Inclusion Vulnerability		756 \| 0
SSV-8098	2008-02-14		Affiliate Market Ver.0.1 BETA (language) Local File Inclusion Vulnerability		874 \| 0
SSV-8076	2008-02-09		PowerNews (Newsscript) 2.5.6 Local File Inclusion Vulnerabilities		797 \| 0
SSV-8071	2008-02-07		OpenSiteAdmin <= 0.9.1.1 Multiple File Inclusion Vulnerabilities		761 \| 0
SSV-8065	2008-02-05		XOOPS 2.0.18 Local File Inclusion / URL Redirecting Vulnerabilities		1284 \| 0
SSV-8067	2008-02-05		All Club CMS <= 0.0.1f index.php Local File Inclusion Vulnerability		725 \| 0
SSV-8059	2008-02-05		VHD Web Pack 2.0 (index.php page) Local File Inclusion Vulnerability		781 \| 0
SSV-8039	2008-02-01		PHP Links <= 1.3 smarty.php Remote File Inclusion Vulnerability		858 \| 0
SSV-8031	2008-01-31		Joomla Component ChronoForms 2.3.5 RFI Vulnerabilities		916 \| 0
SSV-8023	2008-01-31		Connectix Boards <= 0.8.2 template_path Remote File Inclusion Exploit		750 \| 0
SSV-8034	2008-01-31		Mindmeld 1.2.0.10 Multiple Remote File Inclusion Vulnerabilities		738 \| 0
SSV-7931	2008-01-29		phpMyClub 0.0.1 (page_courante) Local File Inclusion Vulnerability		729 \| 0
SSV-7924	2008-01-28		Bubbling Library 1.32 Multiple Local File Inclusion Vulnerabilities		737 \| 0
SSV-7922	2008-01-26		Liquid-Silver CMS 0.1 (update) Local File Inclusion Vulnerability		730 \| 0
SSV-2860	2008-01-25		SLAED CMS 'index.php'本地文件包含漏洞		560 \| 0
SSV-2856	2008-01-25		Liquid-Silver CMS 'update/index.php'本地文件包含漏洞		477 \| 0
SSV-7899	2008-01-22		Lama Software (14.12.2007) Multiple Remote File Inclusion Vulnerabilities		768 \| 0
SSV-7887	2008-01-21		Mini File Host 1.2.1 (upload.php language) Local File Inclusion Exploit		732 \| 0
SSV-7881	2008-01-20		Gradman <= 0.1.3 (agregar_info.php) Local File Inclusion Exploit		784 \| 0
SSV-7878	2008-01-20		Small Axe 0.3.1 (linkbar.php cfile) Remote File Inclusion Vulnerability		760 \| 0
SSV-2835	2008-01-18		MailBee WebMail Pro 'download_view_attachment.aspx'本地文件包含漏洞		676 \| 0
SSV-7877	2008-01-18		Gradman <= 0.1.3 (info.php tabla) Local File Inclusion Vulnerability		734 \| 0
SSV-7871	2008-01-17		Gradman <= 0.1.3 (agregar_info.php) Local File Inclusion Exploit		730 \| 0
SSV-7866	2008-01-17		Aria 0.99-6 (effect.php page) Local File Inclusion Vulnerability		784 \| 0
SSV-7834	2008-01-11		vcart 3.3.2 Multiple Remote File Inclusion Vulnerabilities		794 \| 0
SSV-7827	2008-01-10		Tuned Studios Templates Local File Inclusion Vulnerability		2003 \| 0
SSV-7830	2008-01-10		osData <= 2.08 Modules Php121 Local File Inclusion Vulnerability		716 \| 0
SSV-2793	2008-01-09		Xoops XoopsGallery Module 'init_basic.php'远程文件包含漏洞		1190 \| 0
SSV-2790	2008-01-09		SineCms 'index.php'远程文件包含漏洞		572 \| 0
SSV-7799	2008-01-07		XOOPS mod_gallery Zend_Hash_key + Extract RFI Vulnerability		1276 \| 0
SSV-7803	2008-01-07		SineCMS <= 2.3.5 Local File Inclusion / RCE Vulnerabilities		736 \| 0
SSV-7786	2008-01-06		SNETWORKS PHP CLASSIFIEDS 5.0 Remote File Inclusion Vulnerability		1285 \| 0
SSV-7782	2008-01-06		samPHPweb (db.php commonpath) Remote File Inclusion Vulnerability		813 \| 0
SSV-7780	2008-01-04		NetRisk <= 1.9.7 Remote/Local File Inclusion Vulnerability		813 \| 0
SSV-2760	2008-01-03		SanyBee Gallery 'index.php'本地文件包含漏洞		587 \| 0
SSV-7763	2007-12-31		MolyX BOARD 2.5.0 (index.php lang) Local File Inclusion Vulnerability		1015 \| 0
SSV-7760	2007-12-31		MatPo Bilder Galerie 1.1 Remote File Inclusion Vulnerability		749 \| 0
SSV-7761	2007-12-31		SanyBee Gallery 0.1.1 (p) Local File Inclusion Vulnerability		814 \| 0
SSV-7752	2007-12-30		Mihalism Multi Forum Host <= 3.0.x Remote File Inclusion Vulnerability		825 \| 0
SSV-7755	2007-12-30		Kontakt Formular 1.4 Remote File Inclusion Vulnerability		728 \| 0
SSV-2733	2007-12-29		XZeroScripts XZero Community Classifieds 'config.inc.php'远程文件包含漏洞		568 \| 0
SSV-2735	2007-12-29		XZeroScripts XZero Community Classifieds 本地文件包含漏洞		586 \| 0
SSV-7747	2007-12-29		XCMS <= 1.82 Remote Local File Inclusion Vulnerability		723 \| 0
SSV-2732	2007-12-28		PNphpBB2 'printview.php'本地文件包含漏洞		1244 \| 0
SSV-2712	2007-12-27		Agares Media ThemeSiteScript 'loadadminpage'远程文件包含漏洞		492 \| 0
SSV-2720	2007-12-27		Shadowed Portal远程文件包含漏洞		544 \| 0
SSV-7742	2007-12-27		PNphpBB2 <= 1.2i (printview.php phpEx) Local File Inclusion Vuln		1367 \| 0
SSV-2714	2007-12-27		Joomla mosDirectory Component mosConfig_absolute_path远程文件包含漏洞		784 \| 0
SSV-7741	2007-12-27		XZero Community Classifieds <= 4.95.11 Remote File Inclusion Vuln		757 \| 0
SSV-7718	2007-12-26		TeamCalPro 3.1.000 Multiple Remote/Local File Inclusion Vulnerabilities		750 \| 0
SSV-2705	2007-12-26		PHPMySMS gateway.php远程文件包含漏洞		484 \| 0
SSV-2693	2007-12-26		Galleria远程文件包含漏洞		578 \| 0
SSV-2696	2007-12-26		Free QBoard qb_path远程文件包含漏洞		599 \| 0
SSV-2694	2007-12-26		MyPHP CMS global_header.php远程文件包含漏洞		505 \| 0
SSV-2689	2007-12-26		Ovidentia多个脚本远程文件包含漏洞		684 \| 0
SSV-7711	2007-12-25		Agares PhpAutoVideo 2.21 Remote/Local File Inclusion Vulnerabilities		891 \| 0
SSV-7709	2007-12-25		ThemeSiteScript 1.0 (index.php loadadminpage) RFI Vulnerability		745 \| 0
SSV-2677	2007-12-25		Social Engine 'global_lang'本地文件包含漏洞		546 \| 0
SSV-7712	2007-12-25		Joomla Component mosDirectory 2.3.2 Remote File Inclusion Vuln		919 \| 0
SSV-2668	2007-12-24		mBlog 'index.php'本地文件包含漏洞		599 \| 0
SSV-2671	2007-12-24		MyBlog Games.PHP ID远程文件包含漏洞		501 \| 0
SSV-7688	2007-12-22		Social Engine 2.0 Multiple Local File Inclusion Vulnerabilities		772 \| 0
SSV-7694	2007-12-22		NmnNewsletter 1.0.7 (output) Remote File Inclusion Vulnerability		822 \| 0
SSV-7689	2007-12-22		Arcadem LE 2.04 (loadadminpage) Remote File Inclusion Vulnerability		721 \| 0
SSV-7690	2007-12-22		Shadowed Portal <= 5.7d3 (POST) Remote File Inclusion Vulnerability		881 \| 0
SSV-7659	2007-12-19		PhpMyDesktop\|arcade 1.0 Final (phpdns_basedir) RFI Vulnerability		861 \| 0
SSV-2611	2007-12-15		City Writer 'head.php'远程文件包含漏洞		561 \| 0
SSV-2608	2007-12-15		Fastpublish CMS Designconfig.PHP远程文件包含漏洞		589 \| 0
SSV-7630	2007-12-15		Form Tools 1.5.0b Multiple Remote File Inclusion Vulnerabilities		730 \| 0
SSV-7629	2007-12-15		Oreon 1.4 / Centreon 1.4.1 Multiple RFI Vulnerabilties		713 \| 0
SSV-7611	2007-12-14		CityWriter 0.9.7 head.php Remote File Inclusion Vulnerability		785 \| 0
SSV-7596	2007-12-13		Mcms Easy Web Make (index.php template) Local File Inclusion Vuln		810 \| 0
SSV-7598	2007-12-13		Fastpublish CMS 1.9999 config[fsBase] RFI Vulnerability		849 \| 0
SSV-2586	2007-12-13		PHP-Nuke autohtml.php本地文件包含漏洞		948 \| 0
SSV-7595	2007-12-13		ViArt CMS/Shop/HelpDesk 3.3.2 Remote File Inclusion Vulnerability		787 \| 0
SSV-7584	2007-12-11		Falcon CMS 1.4.3 (RFI/XSS) Multiple Remote Vulnerabilities		816 \| 0
SSV-2559	2007-12-10		Rayzz Class_HeaderHandler.Lib.PHP远程文件包含漏洞		533 \| 0
SSV-2560	2007-12-10		Tellmatic tm_includepath远程文件包含漏洞		536 \| 0
SSV-7572	2007-12-09		SerWeb <= 2.0.0 dev1 2007-02-20 Multiple RFI / LFI Vulnerabilities		723 \| 0
SSV-2524	2007-12-04		datecomm Social Networking Software Index.PHP远程文件包含漏洞		575 \| 0
SSV-2528	2007-12-04		Project Alumni Index.PHP Act参数本地文件包含漏洞		602 \| 0
SSV-2533	2007-12-04		PHP-CON Include.PHP远程文件包含漏洞		626 \| 0
SSV-7539	2007-12-03		tellmatic 1.0.7 Multiple Remote File Inclusion Vulnerabilities		731 \| 0
SSV-7540	2007-12-03		Rayzz Script 2.0 Remote / Local File Inclusion Vulnerabilities		787 \| 0
SSV-2506	2007-11-29		RunCMS Common.PHP本地文件包含漏洞		1068 \| 0
SSV-7522	2007-11-29		PHP-CON 1.3 (include.php) Remote File Inclusion Vulnerability		858 \| 0
SSV-7523	2007-11-29		EHCP <= 0.22.8 Multiple Remote File Inclusion Vulnerabilities		778 \| 0
SSV-7524	2007-11-29		Charrays CMS 0.9.3 Multiple Remote File Inclusion Vulnerabilities		790 \| 0
SSV-2502	2007-11-27		Amber Script Show_Content.PHP本地文件包含漏洞		549 \| 0
SSV-7513	2007-11-26		IAPR COMMENCE 1.3 Multiple Remote File Inclusion Vulnerability		736 \| 0

1
...
3
4
5
6
7
8
9
10
11
12
13
...
22