Lucene search
K

233 matches found

Prion
Prion
added 2012/07/12 8:55 p.m.20 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in eXtplorer 2.1 RC3 and earlier allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via an adduser admin action...

6.8CVSS7.5AI score0.00888EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2012/07/12 8:0 p.m.23 views

CVE-2012-3362

Cross-site request forgery CSRF vulnerability in eXtplorer 2.1 RC3 and earlier allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via an adduser admin action...

6.9AI score0.00888EPSS
Exploits1References6
CVE
CVE
added 2012/07/12 8:0 p.m.61 views

CVE-2012-3362

CVE-2012-3362 describes a Cross-site request forgery (CSRF) in eXtplorer up to version 2.1 RC3 and earlier. An attacker could hijack administrator authentication to perform actions—specifically, to add an administrator account via an adduser admin action. Affected software is eXtplorer; root caus...

6.8CVSS7AI score0.00888EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2012/07/12 12:0 a.m.19 views

DSA-2510-1 extplorer - Cross-site request forgery

Bulletin has no description...

6.8CVSS6.7AI score0.00888EPSS
Exploits1
Packet Storm
Packet Storm
added 2011/04/07 12:0 a.m.29 views

eXtplorer 2.1 RC3 Cross Site Request Forgery

------------------------------------------------------------------------ --Description-- A cross-site request forgery vulnerability in eXtplorer 2.1 RC3 can be exploited to create a new admin. --PoC-- input type="hidden"...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2009/03/04 12:0 a.m.57 views

[ISecAuditors Security Advisories] eXtplorer Remote Code Execution

============================================= INTERNET SECURITY AUDITORS ALERT 2009-002 - Original release date: January 7th, 2009 - Last revised: March 2nd, 2009 - Discovered by: Juan Galiana Lara - Severity: 9/10 CVSS scored ============================================= I. VULNERABILITY...

0.2AI score
Exploits0
seebug.org
seebug.org
added 2009/03/03 12:0 a.m.37 views

eXtplorer include/init.php本地文件包含漏洞

eXtplorer include/init.php本地文件包含漏洞 发布日期:2009-03-02 更新日期:2009-03-03 受影响系统: Soeren Eberhardt eXtplorer 2.0.0 不受影响系统: Soeren Eberhardt eXtplorer 2.0.1 描述:BUGTRAQ ID: 33955 eXtplorer是一款基于web的文件管理组件。...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2009/03/02 12:0 a.m.33 views

eXtplorer Code Execution

============================================= INTERNET SECURITY AUDITORS ALERT 2009-002 - Original release date: January 7th, 2009 - Last revised: March 2nd, 2009 - Discovered by: Juan Galiana Lara - Severity: 9/10 CVSS scored ============================================= I. VULNERABILITY...

7.4AI score
Exploits0
0day.today
0day.today
added 2009/03/02 12:0 a.m.27 views

Joomla/Mambo Component eXtplorer Code Execution Vulnerability

Exploit for unknown platform in category web applications ============================================================= Joomla/Mambo Component eXtplorer Code Execution Vulnerability ============================================================= ============================================= INTERNE...

7.1AI score
Exploits0
NVD
NVD
added 2008/10/28 2:3 a.m.14 views

CVE-2008-4764

Directory traversal vulnerability in the eXtplorer module comextplorer 2.0.0 RC2 and earlier in Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the dir parameter in a showerror action...

5CVSS6.7AI score0.16505EPSS
Exploits1References3
Prion
Prion
added 2008/10/28 2:3 a.m.10 views

Directory traversal

Directory traversal vulnerability in the eXtplorer module comextplorer 2.0.0 RC2 and earlier in Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the dir parameter in a showerror action...

5CVSS7.1AI score0.16505EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2008/10/28 1:0 a.m.21 views

CVE-2008-4764

Directory traversal vulnerability in the eXtplorer module comextplorer 2.0.0 RC2 and earlier in Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the dir parameter in a showerror action...

6.7AI score0.16505EPSS
Exploits1References3
CVE
CVE
added 2008/10/28 1:0 a.m.86 views

CVE-2008-4764

The connected template confirms CVE-2008-4764 affects Joomla! ≤2.0.0 RC2 via the eXtplorer (com_extplorer) module, enabling Local File Inclusion by passing a “..” in the dir parameter of show_error. Impact is the reading of arbitrary server files. Root cause: directory traversal in show_error act...

5CVSS6.7AI score0.16505EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder