422 matches found
lsgalilei.org XSS vulnerability
Vulnerable URL: https://www.lsgalilei.org/elearning/claroline/backends/download.php?url=aHR0cDovL2cuZTxzdmcgb25sb2FkPWFsZXJ0KCJYU1NQT1NFRCIpPg===true=INGDIP Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicl...
Wordpress RedSteel Theme-download.php任意文件下载漏洞
No description provided by source...
Reflected Cross-Site Scripting Vulnerability in MetInfo Version 5.3.3
MetInfo is an enterprise website management system with PHP Mysql architecture. A reflective cross-site scripting vulnerability exists in MetInfo version 5.3.3. An attacker can exploit the vulnerability to conduct cross-site scripting attacks. The vulnerability exists in the following pages:...
Joomla 插件fsave v2.0 download.php 任意文件下载漏洞
No description provided by source...
Joomla Fsave 2.0 Local File Disclosure
. | | / | | \ \ | | \ / | |\ / / /\ \ / \ | Y / ^ / / || / / / / /\ /\ \ \ \ | / \ / / \ | \ \ / // / \ / / / / Joomla = fsave Plugin Local File Disclosure Vulnerability My + Author : KnocKout Contact : [email protected] Skype : [email protected] HomePage : http://milw00rm.com -...
Netentsec ASG网康应用安全网关在commonpluginDownload.php存在任意文件下载漏洞
0x01漏洞简介 Netentsec ASG网康应用安全网关在/commonplugin/Download.php存在任意文件下载漏洞。远程攻击者可以利用参数licensefile 或者 reqfile 结合..下载任意文件。如果下载文件是SvrLicense.license表示该漏洞已经修复,如果下载文件为自己包含的文件,说明该漏洞仍然存在。 0x02漏洞分析 查看问题代码如下: obstart""; header"Expires: Sat, 01 Jan 2000 00:00:00 GMT"; header"Last-Modified: ".gmdate"D, d M Y...
moteko.net XSS vulnerability
Vulnerable URL: http://www.moteko.net/portal/download.php?client=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculat...
LineNity WP Premium Theme Local File Inclusion Vulnerability
LineNity WP premium theme suffers from a local file inclusion vulnerability. Document Title: =============== LineNity WP Premium Theme - File Include Vulnerability Product & Service Introduction: =============================== Linenity wordpress theme is a that features a clean and flexible desi...
rmdown.com XSS vulnerability
Open Bug Bounty ID: OBB-94419 Description| Value ---|--- Affected Website:| rmdown.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...
GDL 4.2 download.php&main.php SQL Injection vulnerability
No description provided by source...
WordPress DB-Backup Plugin 4.5 /download.php 任意文件下载漏洞
No description provided by source...
Path traversal
Absolute path traversal vulnerability in lib/download.php in the IBS Mappro plugin before 1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...
CVE-2015-5472
CVE-2015-5472 affects the WordPress IBS Mappro plugin (prior to version 1.0). A flaw in lib/download.php allows an attacker to perform absolute path traversal by supplying a full pathname in the file parameter, enabling reading of arbitrary files on the server. The vulnerability is confirmed acro...
MP3-jPlayer <= 2.4.2 - Full Path Disclosure
The download.php code allows arbitrary users to disclose path information on WordPress sites with this plugin installed. 120 $info = " 121 Get: " . $mp3 . " 122 Sent: " . $sent . " 123 File: " . $file . " 124 Open: " . $SERVER'DOCUMENTROOT' . $fp . " 125 Root: " . $rooturl . " 126 pID: "...
WordPress Plugin Swim Team 1.44.10777 - Arbitrary File Download
Title: Remote file download vulnerability in Wordpress Plugin wp-swimteam v1.44.10777 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-02 Download Site: https://wordpress.org/plugins/wp-swimteam Vendor: Mike Walsh www.MichaelWalsh.org Vendor Notified: 2015-07-02, fixed in v1.45beta3 Vendor...
WordPress IBS Mappro Plugin <= 0.9 - Absolute Path Traversal
This vulnerability is in lib/download.php. It allows an attacker to read arbitrary files via a full pathname in the "file" parameter. Solution Update the plugin...
Swim Team <= v1.44.10777 - Local File Inclusion
The code in ./wp-swimteam/include/user/download.php doesn't sanitize user input from downloading sensitive system files. PoC $ curl "http://www.vapidlabs.com/wp-content/plugins/wp-swimteam/include/user/download.php?file=/etc/passwd=/etc/passwd=text/html=1=/usr/share/wordpress"...
MDC YouTube Downloader <= 2.1.0 - Local File Inclusion
The MDC YouTube Downloader WordPress plugin was affected by a Local File Inclusion security vulnerability. http://www.example.com/wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd...
WordPress Estrutura-Basica theme 'download.php' arbitrary file download vulnerability
WordPress is the WordPress Software Foundation's suite of blogging platforms developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.Estrutura-Basica is one of the basic structure themes. An arbitrary file download vulnerability exists in the WordPres...
WordPress Estrutura-Basica File Disclosure
: Exploit Title : Wordpress estrutura-basica Themes Local File Download Vulnerability : Exploit Author : FullSecurity.org : Vendor Homepage : http://wordpress.org : Date: 2015-13-09 : Tested On : Kali linux : Exploit :...