4648 matches found
CVE-2018-7204
inc/logger.php in the Giribaz File Manager plugin before 5.0.2 for WordPress logged activity related to the plugin in /wp-content/uploads/file-manager/log.txt. If a user edits the wp-config.php file using this plugin, the wp-config.php contents get added to log.txt, which is not protected and...
Code execution vulnerability in LaySNS v2.2.0 System.php page
LaySNS Light Community is a comprehensive website system based on ThinkPHP5+LayUI that integrates content publishing and community exchange. A code execution vulnerability exists in the program implementation of the LaySNS v2.2.0 System.php page, which is due to the system's failure to strictly...
CVE-2018-7556
LimeSurvey 2.6.x before 2.6.7, 2.7x.x before 2.73.1, and 3.x before 3.4.2 mishandles application/controller/InstallerController.php after installation, which allows remote attackers to access the configuration file...
Design/Logic Flaw
LimeSurvey 2.6.x before 2.6.7, 2.7x.x before 2.73.1, and 3.x before 3.4.2 mishandles application/controller/InstallerController.php after installation, which allows remote attackers to access the configuration file...
CVE-2018-7556
LimeSurvey 2.6.x before 2.6.7, 2.7x.x before 2.73.1, and 3.x before 3.4.2 mishandles application/controller/InstallerController.php after installation, which allows remote attackers to access the configuration file...
CVE-2018-7556
Vulnerability: LimeSurvey (versions 2.6.x before 2.6.7, 2.7x.x before 2.73.1, and 3.x before 3.4.2) mishandles application/controller/InstallerController.php after installation, allowing remote attackers to access the configuration file (information disclosure). This is a file-disclosure issue du...
CMS Made Simple 2.1.6 - Remote Code Execution
CMS Made Simple 2.1.6 - Remote Code Execution Exploit Title: CMS Made Simple 2.1.6 - Remote Code Execution Date: 2018-02-26 Exploit Author: Keerati T. Vendor Homepage: http://www.cmsmadesimple.org/ Software Link: http://s3.amazonaws.com/cmsms/downloads/13570/cmsms-2. 1.6-install.zip Version: 2.1....
CMS Made Simple 2.1.6 - Remote Code Execution
Exploit Title: CMS Made Simple 2.1.6 - Remote Code Execution Date: 2018-02-26 Exploit Author: Keerati T. Vendor Homepage: http://www.cmsmadesimple.org/ Software Link: http://s3.amazonaws.com/cmsms/downloads/13570/cmsms-2. 1.6-install.zip Version: 2.1.6 CVE: CVE-2018-7448 Tested on: Linux...
SCP/SFTP/FTP Sensitive Data Exposure via Config File (HTTP)
The script attempts to identify SCP/SFTP/FTP configuration files containing sensitive data at the remote web server. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CMS Made Simple 2.1.6 Remote Code Execution Vulnerability
Exploit for php platform in category web applications Exploit Title: CMS Made Simple 2.1.6 - Remote Code Execution Date: 2018-02-26 Exploit Author: Keerati T. Vendor Homepage: http://www.cmsmadesimple.org/ Software Link: http://s3.amazonaws.com/cmsms/downloads/13570/cmsms-2.1.6-install.zip Versio...
CMS Made Simple 2.1.6 Remote Code Execution
Exploit Title: CMS Made Simple 2.1.6 - Remote Code Execution Date: 2018-02-26 Exploit Author: Keerati T. Vendor Homepage: http://www.cmsmadesimple.org/ Software Link: http://s3.amazonaws.com/cmsms/downloads/13570/cmsms-2.1.6-install.zip Version: 2.1.6 CVE: CVE-2018-7448 Tested on: Linux...
MetInfo config/config_db.php file arbitrary command execution vulnerability
MetInfo is a content management system CMS developed using PHP and Mysql by China Mito Information Technology Ltd. A security vulnerability exists in MetInfo version 6.0.0, which stems from sloppy filtering of the configuration file in the config/configdb.php file. An attacker can exploit the...
CVE-2018-7271
An issue was discovered in MetInfo 6.0.0. In install/install.php in the installation process, the config/configdb.php configuration file filtering is not rigorous: one can insert malicious code in the installation process to execute arbitrary commands or obtain a web shell...
μTorrent (uTorrent) Classic/Web - JSON-RPC Remote Code Execution / Information Disclosure
By default, utorrent create an HTTP RPC server on port 10000 uTorrent classic or 19575 uTorrent web. There are numerous problems with these RPC servers that can be exploited by any website using XMLHTTPRequest. To be clear, visiting any website is enough to compromise these applications. uTorrent...
CVE-2017-12723
A Password in Configuration File issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The pump stores some passwords in the configuration file, which are accessible if the pump is configured to allow external communications...
CVE-2017-12723
A Password in Configuration File issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The pump stores some passwords in the configuration file, which are accessible if the pump is configured to allow external communications...
CVE-2017-12723
CVE-2017-12723 affects Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump (versions 1.1, 1.5, 1.6). The issue is a Password in Configuration File vulnerability where passwords are stored in the configuration file and could be accessed if external communications are enabled. The NVD entr...
CVE-2017-12723
A Password in Configuration File issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The pump stores some passwords in the configuration file, which are accessible if the pump is configured to allow external communications...
Schneider Electric IGSS Mobile Information Disclosure Vulnerability
Schneider Electric IGSS Mobile is a suite of mobile applications for managing IGSS Shared Services Platform from Schneider Electric, France. An information disclosure vulnerability exists in Schneider Electric IGSS Mobile version 3.01 and prior versions, which stems from the program storing...
The vulnerability in the web console of the Kaspersky Secure Mail Gateway security tool, which allows access to the root user rights.
The vulnerability of the Kaspersky Secure Mail Gateway web console relates to deficiencies in the process of eliminating special elements from the output data used by the incoming component. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain root user privilege...