11 matches found
CVE-2019-16679
Gila CMS before 1.11.1 allows admin/fm/?f=../ directory traversal, leading to Local File Inclusion...
Design/Logic Flaw
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro 11.9.2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2022-28668
The CVE-2022-28668 issue affects Sante DICOM Viewer Pro 11.9.2. It stems from improper validation in the J2K file parsing code, causing a write past the end of an allocated data structure and enabling remote code execution with user interaction (visiting a malicious page or opening a malicious fi...
CVE-2020-16679
...
CVE-2020-16679
CVE-2020-16679 is rejected/not used per description; this entry does not represent an active vulnerability.
CVE-2019-16679
creationtimestamp| type| source ---|---|--- 2021-09-21 04:41:50+00:00| seen| https://t.me/pwnwikizhchannel/846...
Gila CMS < 1.11.1 - Local File Inclusion Vulnerability
Exploit for php platform in category web applications Exploit Title: Authenticated Local File InclusionLFI in GilaCMS Google Dork: N/A Exploit Author: Sainadh Jamalpur Vendor Homepage: https://github.com/GilaCMS/gila Software Link: https://github.com/GilaCMS/gila Version: 1.10.9 Tested on: XAMPP...
Gila CMS < 1.11.1 - Local File Inclusion
Exploit Title: Authenticated Local File InclusionLFI in GilaCMS Google Dork: N/A Date: 04-08-2019 Exploit Author: Sainadh Jamalpur Vendor Homepage: https://github.com/GilaCMS/gila Software Link: https://github.com/GilaCMS/gila Version: 1.10.9 Tested on: XAMPP version 3.2.2 in Windows 10 64bit, CV...
CVE-2019-16679
Gila CMS (pre-1.11.1) is vulnerable to an authenticated Local File Inclusion via admin/fm/?f=.. abuse (directory traversal). Root cause: improper sanitization of the f parameter allows traversal to access local files. Impact as described: Local File Inclusion with partial confidentiality impact; ...
CVE-2017-16679
URL redirection vulnerability in SAP's Startup Service, SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP KERNEL 64 NUC, SAP KERNEL 64 Unicode 7.21, 7.21EXT, 7.22 and 7.22EXT; SAP KERNEL 7.21, 7.22, 7.45, 7.49 and 7.52, that allows an attacker to redirect users to a malicious site...
CVE-2017-16679
CVE-2017-16679 describes a URL redirection vulnerability in SAP Startup Service within SAP Kernel variants (32/64 NUC/Unicode) and multiple kernel versions (7.21, 7.21EXT, 7.22, 7.22EXT, 7.45, 7.49, 7.52). The underlying issue is a vulnerable redirect mechanism that allows an attacker to lead use...