3143 matches found
WordPress Media File Manager Directory Traversal
Directory traversal vulnerability in WordPress Media File Manager plugin Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
Responsive FileManager 9.13.4 - Multiple Vulnerabilities
Responsive FileManager 9.13.4 - Multiple Vulnerabilities Responsive FileManager 9.13.4 - Multiple Vulnerabilities Date: December 12, 2018 Author: farisv Vendor Homepage: https://www.responsivefilemanager.com/ Vulnerable Package Link:...
TerraMaster TOS Cross-Site Scripting Vulnerability (CNVD-2019-00658)
TerraMaster TOS is a set of storage server special operating system based on Linux platform developed by Terra Master. The system supports file sharing, cloud data synchronization, data backup and virtualization, etc. File Manager is one of the file managers. A cross-site scripting vulnerability...
CVE-2018-13333
Cross-site scripting in File Manager in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript in the permissions window by placing JavaScript in users' usernames...
Cross site scripting
Cross-site scripting in File Manager in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript in the permissions window by placing JavaScript in users' usernames...
CVE-2018-13333
CVE-2018-13333 affects TerraMaster TOS File Manager in version 3.1.03. The issue is a cross-site scripting vulnerability that allows an attacker to execute JavaScript in a privileged permissions window by placing script in a user’s username. Some sources also frame this as a remote threat where a...
OLX: blog.praca.olx.pl database credentials exposure
Hi, I found that the site blog.praca.olx.pl is exposing the content of wp-config.php file in plaintext due that a misconfiguration in the file-manager plugin. The information can be accessed here: http://blog.praca.olx.pl/wp-content/uploads/file-manager/log.txt The credentials are stored in the...
WordPress Media File Manager plugin <= 1.4.2 - Directory Traversal vulnerability
Directory Traversal vulnerability found by boombyte in WordPress Media File Manager plugin versions = 1.4.2. Solution WordPress Media File Manager plugin was closed on 2018 November 8 and is no longer available for download. Please deactivate and uninstall plugin as soon as possible...
WordPress Media File Manager plugin <= 1.4.2 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability found by boombyte in WordPress Media File Manager plugin versions = 1.4.2. Solution WordPress Media File Manager plugin was closed on 2018 November 8 and is no longer available for download. Please deactivate and uninstall plugin as soon as possibl...
Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Cross-Site Scripting
Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Cross-Site Scripting Exploit Title: Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Date: 2018-05-11 Exploit Author: Pasquale Turi aka boombyte Vendor Homepage: https://wordpress.org/plugins/media-file-manager/ Softwa...
Wordpress Media File Manager 1.4.2 Plugin - Directory Traversal Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Exploit Author: Pasquale Turi aka boombyte Vendor Homepage: https://wordpress.org/plugins/media-file-manager/ Software Link:...
WordPress Media File Manager 1.4.2 Directory Traversal
Exploit Title: Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Date: 2018-05-11 Exploit Author: Pasquale Turi aka boombyte Vendor Homepage: https://wordpress.org/plugins/media-file-manager/ Software Link: https://wordpress.org/plugins/media-file-manager/ Version: 1.4.2 CVE: N/A...
WordPress Plugin Media File Manager 1.4.2 - Directory Traversal / Cross-Site Scripting
Exploit Title: Wordpress Plugin Media File Manager 1.4.2 - Directory Traversal Date: 2018-05-11 Exploit Author: Pasquale Turi aka boombyte Vendor Homepage: https://wordpress.org/plugins/media-file-manager/ Software Link: https://wordpress.org/plugins/media-file-manager/ Version: 1.4.2 CVE: N/A...
Concrete CMS: SVG file that HTML Included is able to upload via File Manager
Concrete5 has the whitelist for restricting that malicious file is uploaded. concrete/config/concrete.php, Line no. 8688 The extension whitelist allows to upload SVG file. However, SVG can has the HTML elements in its code. Ref. https://www.w3.org/TR/SVG2/intro.htmlW3CCompatibility If web browser...
Media File Manager <= 1.4.2 - Authenticated Multiple Vulnerabilities
Following the PoC you can combine the vulnerabilities to obtain PHP code execution and read sensitive file. By default the File Manager can only be used by Administrator users, however, any user role can be configured to use it. Diretory Trasversal: POST /wordpress/wp-admin/admin-ajax.php HTTP/1....
Media File Manager <= 1.4.2 - Authenticated Multiple Vulnerabilities
Following the PoC you can combine the vulnerabilities to obtain PHP code execution and read sensitive file. By default the File Manager can only be used by Administrator users, however, any user role can be configured to use it. PoC Diretory Trasversal: POST /wordpress/wp-admin/admin-ajax.php...
CVE-2018-18874
nc-cms through 2017-03-10 allows remote attackers to execute arbitrary PHP code via the "Upload File or Image" feature, with a .php filename and "Content-Type: application/octet-stream" to the index.php?action=filemanagerupload URI...
CVE-2018-18874
nc-cms through 2017-03-10 allows remote attackers to execute arbitrary PHP code via the "Upload File or Image" feature, with a .php filename and "Content-Type: application/octet-stream" to the index.php?action=filemanagerupload URI...
CVE-2018-18771
An issue was discovered in LuLu CMS through 2015-05-14. backend\modules\filemanager\controllers\DefaultController.php allows arbitrary file upload by entering a filename, directory name, and PHP code into the three text input fields...
AjentiCP 1.2.23.13 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Title: AjentiCP 1.2.23.13 - Cross-Site Scripting Author: Numan OZDEMIR https://infinitumit.com.tr Vendor Homepage: ajenti.org Software Link: https://github.com/ajenti/ajenti Version: Up to v1.2.23.13 CVE: CVE-2018-18548 Description: Attacker c...