68 matches found
PT-2024-5008 · NetGear · Netgear Wn604
Name of the Vulnerable Software and Affected Versions: Netgear WN604 versions up to 20240710 Description: A vulnerability was found in the Web Interface component of Netgear WN604, specifically in the /downloadFile.php file. The issue is related to insufficient protection of internal data. The...
WordPress Plugin almosteffortless secure-files path traversal vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A path traversal vulnerability exists in...
There is an RCE vulnerability
Description - There is an RCE vulnerability in qmpaas/leadshop https://github.com/qmpaas/leadshop v1.4.15. An attacker can access the file leadshop.php and call any existing function through GET to control the target host. The vulnerability is in the leadshop/web/leadshop.php27-61 file public...
CVE-2022-40475
TOTOLINK A860R (version 4.1.2cu.5182_B20201027) is affected by a command injection via /cgi-bin/downloadFile.cgi. The root cause is improper filtering of command characters in this CGI, enabling potential arbitrary command execution with network access. CVSS v3.1 base score 9.8 (CRITICAL) reflect...
CVE-2022-37840
In TOTOLINK A860R V4.1.2cu.5182B20201027, the main function in downloadfile.cgi has a buffer overflow vulnerability...
CVE-2021-3485
An Improper Input Validation vulnerability in the Product Update feature of Bitdefender Endpoint Security Tools for Linux allows a man-in-the-middle attacker to abuse the DownloadFile function of the Product Update to achieve remote code execution. This issue affects: Bitdefender Endpoint Securit...
CVE-2021-3485
An Improper Input Validation vulnerability in the Product Update feature of Bitdefender Endpoint Security Tools for Linux allows a man-in-the-middle attacker to abuse the DownloadFile function of the Product Update to achieve remote code execution. This issue affects: Bitdefender Endpoint Securit...
Bitdefender Endpoint Security Tool 输入验证错误漏洞
Bitdefender Endpoint Security Tool is an endpoint security management tool from the Romanian company Bitdefender. An input validation error vulnerability exists in Product Update for Linux Bitdefender Endpoint Security Tools versions prior to 6.2.21.155, which can be exploited by an attacker to...
Cisco UCS Director downloadFile Directory Traversal Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cisco UCS Director. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the userAPIDownloadFile API, which calls the downloadFile...
Denial Of Service (DoS)
sonar-scanner-api is vulnerable to denial of serviceDoS attacks. The vulnerability exists in the ServerConnection.java class because the downloadFile function does not properly close response body, resulting in excessive resource consumption that can potentially lead to an application crash...
Arbitrary File Read Vulnerability in Multiple IBM Products (CNVD-2018-13174)
IBM SAN Volume Controller SVC, built with IBM Spectrum Storage software, is a reliable system that helps improve the data value, security and ease of use of new and existing storage infrastructures.The IBM Storwize product family provides all-flash, hybrid storage solutions with common features a...
CVE-2018-1433
IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.7, 7.7.1, 7.8, 7.8.1, 8.1, and 8.1.1 web handler /DownloadFile does not require authentication to read arbitrary files from the system. IBM...
CVE-2018-1433
VULNERABILITY DETAIL (CVE-2018-1433): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem family (versions 6.1–8.1.x) expose a web handler /DownloadFile that does not require authentication, enabling reading arbitrary files from the system. This is confirmed acros...
CVE-2016-1594
Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated by obtaining sensitive information via a 1 downloadLogFiles or 2 downloadFile action...
CMS4J 2010 DownloadFile 任意文件下载漏洞
No description provided by source...
Paltalk Messenger 10.0 Insecure Method
Vulnerability ID: HTB23026 Reference: http://www.htbridge.ch/advisory/paltalkmessengeractivexcontrolmultipleinsecuremethods.html Product: Paltalk Messenger Vendor: Paltalk http://www.paltalk.com Vulnerable Version: 10.0 and probably prior Tested on: 10.0 Vendor Notification: 22 June 2011...
HP Online Support Services ActiveX DownloadFile() arbitrary file download
Overview The HP Online Support Services ActiveX control contains a method called DownloadFile. This may allow a remote, unauthenticated attacker to download files to the location of the ActiveX control. Description HP Services provides online product support services including HP Instant Support...
Design/Logic Flaw
The DownloadFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to force a download of an arbitrary file onto a client machine via a URL in the first argument and a destination filename in the second...
CVE-2007-5608
The DownloadFile function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to force a download of an arbitrary file onto a client machine via a URL in the first argument and a destination filename in the second...
zenturi-navig.txt
----------------------------------------------------------------------------- Zenturi ProgramChecker ActiveX Control "NavigateUrl" Insecure Method url: http://www.programchecker.com/activeintro.aspx author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org Tested on Windo...