1015 matches found
CVE-2005-2902
SQL injection vulnerability in class-1 Forum Software 0.24.4 allows remote attackers to execute arbitrary SQL commands and bypass the file extension check via SQL code in the file extension of an uploaded file...
CVE-2005-2902
CVE-2005-2902 describes an SQL injection vulnerability in class-1 Forum Software 0.24.4 . The issue allows remote attackers to execute arbitrary SQL and bypass the file extension check by injecting SQL code into the uploaded file’s extension. This is the explicit vulnerability described in multip...
CVE-2005-2902
SQL injection vulnerability in class-1 Forum Software 0.24.4 allows remote attackers to execute arbitrary SQL commands and bypass the file extension check via SQL code in the file extension of an uploaded file...
CVE-2005-2885
The Downloads page in MAXdev MD-Pro 1.0.73, and possibly earlier versions, uses an incomplete blacklist to check for dangerous file extensions, which could allow remote attackers to bypass file extension checks and execute arbitrary commands by uploading a file with a different extension, as...
FreeBSD : opera -- download dialog spoofing vulnerability (a2aa24fd-00d4-11da-bc08-0001020eed82)
A Secunia Advisory reports : Secunia Research has discovered a vulnerability in Opera, which can be exploited by malicious people to trick users into executing malicious files. The vulnerability is caused due to an error in the handling of extended ASCII codes in the download dialog. This can be...
Opera < 8.02 Multiple Vulnerabilities
The remote host is using Opera, an alternative web browser. The version of Opera installed on the remote host contains several flaws. One involves imaging dragging and could result in cross-site scripting attacks and user file retrieval. A second may let attackers spoof the file extension in the...
opera -- download dialog spoofing vulnerability
A Secunia Advisory reports: Secunia Research has discovered a vulnerability in Opera, which can be exploited by malicious people to trick users into executing malicious files. The vulnerability is caused due to an error in the handling of extended ASCII codes in the download dialog. This can be...
CVE-2001-1567
Lotus Domino server 5.0.9a and earlier allows remote attackers to bypass security restrictions and view Notes database files and possibly sensitive Notes template files .ntf via an HTTP request with a large number of "+" characters before the .nsf file extension, which are converted to spaces by...
CVE-2005-2225
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so...
CVE-2005-2225
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so...
EUVD-2005-2226
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so...
PHP-Fusion <= 6.00.105 Accessible Database Backups Download Exploit
Exploit for unknown platform in category web applications =================================================================== PHP-Fusion = 6.00.105 Accessible Database Backups Download Exploit =================================================================== !/usr/bin/perl D A R K A S S A S S I...
File Upload Manager Sploits
Below is some code for a recent unpatched exploit for file managers using php as the base code. Share this with the world and help protect. File Upload Manager - Bypass File Extension and Arbitrary File Delete nothing to see here @ hackthissite.org Through an input validation flaw, users are able...
CVE-2005-1956
File Upload Manager allows remote attackers to upload arbitrary files by modifying the test variable to contain a value of '' six tildes, which bypasses the file extension checks...
CVE-2005-1881
upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code...
CVE-2005-1826
Buffer overflow in HP Radia Notify Daemon 3.1.0.0 formerly by Novadigm, and other versions including 2.x, 3.x, and 4.x, allows remote attackers to execute arbitrary code via a long file extension...
Microsoft Outlook Express 4.x/5.x/6.0 - Attachment Processing File Extension Obfuscation
source: https://www.securityfocus.com/bid/13837/info Microsoft Outlook Express is prone to an attachment file extension obfuscation vulnerability that may present a risk under certain configurations. The issue manifests due to Microsoft Outlook Express behavior while handling an 'EML' email...
Microsoft Outlook Express 4.x5.x6.0 - Attachment Processing File Extension Obfuscation
Microsoft Outlook Express 4.x5.x6.0 - Attachment Processing File Extension Obfuscation source: https://www.securityfocus.com/bid/13837/info Microsoft Outlook Express is prone to an attachment file extension obfuscation vulnerability that may present a risk under certain configurations. The issue...
CVE-2005-1678
CVE-2005-1678 affects Groove Virtual Office prior to 3.1 build 2338, prior to 3.1a build 2364, and Groove Workspace prior to 2.5n build 1871. The vulnerability arises from improper display of file extensions on attached or embedded files in a compound document, which may allow remote attackers to...
CVE-2005-1601
MRO Maximo Self Service 4 and 5 stores certain information under the web document root using file extensions that are not processed by Tomcat, which allows remote attackers to obtain sensitive information via a direct request for the file, such as MXServer.properties...