CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit DB•added 2017/03/01 12:0 a.m.•47 views

WordPress Plugin File Manager 3.0.1 - Cross-Site Request Forgery

!-- Source: https://sumofpwn.nl/advisory/2016/crosssiterequestforgeryinfilemanagerwordpressplugin.html Abstract A Cross-Site Request Forgery CSRF vulnerability was found in the File Manager WordPress Plugin. Among others, this issue can be used to upload arbitrary PHP files to the server. Contact...

Vulnerability Lab•added 2017/02/23 12:0 a.m.•38 views

Super File Explorer 1.0.1 - Arbitrary File Upload Vulnerability

Document Title: =============== Super File Explorer 1.0.1 - Arbitrary File Upload Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2034 Release Date: ============= 2017-02-23 Vulnerability Laboratory ID VL-ID:...

7.1AI score

0day.today•added 2017/02/07 12:0 a.m.•27 views

Responsive Filemanger 9.11.0 - Arbitrary File Disclosure Vulnerability

Exploit for php platform in category web applications + Exploit Title: Responsive Filemanger = 9.11.0 - Arbitrary File Disclosure/Deletion + Date: 7 Feb 2017 + Vulnerability and Exploit Author: Wiswat Aswamenakul + Vendor Homepage: http://www.responsivefilemanager.com/ + Affected version: only...

0.1AI score

exploitpack•added 2017/02/07 12:0 a.m.•15 views

Easy File Uploader 1.2 - Arbitrary File Download

Easy File Uploader 1.2 - Arbitrary File Download Exploit Title: Easy File Uploader Script v1.2 - Arbitrary File Download Google Dork: N/A Date: 07.02.2017 Vendor Homepage: http://nelliwinne.net/ Software Buy:...

exploitpack•added 2017/02/07 12:0 a.m.•18 views

Responsive Filemanger 9.11.0 - Arbitrary File Disclosure

Responsive Filemanger 9.11.0 - Arbitrary File Disclosure + Exploit Title: Responsive Filemanger = 9.11.0 - Arbitrary File Disclosure/Deletion + Date: 7 Feb 2017 + Vulnerability and Exploit Author: Wiswat Aswamenakul + Vendor Homepage: http://www.responsivefilemanager.com/ + Affected version: only...

Packet Storm•added 2017/02/07 12:0 a.m.•39 views

Responsive Filemanager 9.11.0 Arbitrary File Disclosure

Exploit Title: Responsive Filemanger = 9.11.0 - Arbitrary File Disclosure/Deletion + Date: 7 Feb 2017 + Vulnerability and Exploit Author: Wiswat Aswamenakul + Vendor Homepage: http://www.responsivefilemanager.com/ + Affected version: only tested on 9.11.0 and 9.7.3 other versions might be...

Exploit DB•added 2017/02/07 12:0 a.m.•33 views

Responsive Filemanger <= 9.11.0 - Arbitrary File Disclosure

Packet Storm•added 2016/11/14 12:0 a.m.•30 views

phpWebAdmin 1.0 SQL Injection

!/usr/bin/perl -w phpWebAdmin Version 1.0 SQL Injection Proof Of Concept Exploit =============================================================== Discovered by NA , NAattutanota.com ======================================== Description ============ php web admin file and folder manager. currently...

0.1AI score

Check Point Advisories•added 2016/11/08 12:0 a.m.•7 views

Microsoft Windows File Manager Remote Code Execution (MS16-130: CVE-2016-7212)

An remote code execution vulnerability exists within Microsoft Windows. The vulnerability is due to an error in parsing a malformed JPG file. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted JPG file...

9.3CVSS7.9AI score0.69829EPSS

CNVD•added 2016/11/07 12:0 a.m.•3 views

Moodle Arbitrary File Upload Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. An arbitrary file upload vulnerability exists in the legacy course file and file manag...

8.8CVSS7.6AI score0.03822EPSS

Exploits1References1

OSV•added 2016/11/04 10:59 a.m.•2 views

UBUNTU-CVE-2016-9186

Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, and then accessing it via unspecified vectors...

8.8CVSS6.2AI score0.03822EPSS

Exploits1References4

Packet Storm•added 2016/11/01 12:0 a.m.•29 views

Moodle CMS 3.1.2 Cross Site Scripting / File Upload

Title: Multiple Vulnerabilities - Moodle CMS -3.1.2 Application: Moodle CMS Versions Affected: = 3.1.2 Vendor URL: https://moodle.org/ Software URL: https://download.moodle.org/ Discovered by: Joel Vadodil Varghese Tested on: Windows 10 Pro Bugs: Persistent Cross Site Scripting, Non-Persistent...

OSV•added 2016/10/25 2:29 p.m.•0 views

CVE-2016-5513

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to File Manager...

4.3CVSS5.8AI score

NVD•added 2016/10/25 2:29 p.m.•16 views

CVE-2016-5513

4.3CVSS3.3AI score0.01257EPSS

Prion•added 2016/10/25 2:29 p.m.•10 views

Design/Logic Flaw

4CVSS5.4AI score0.01257EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2016/10/25 2:0 p.m.•12 views

CVE-2016-5513

5.5AI score0.01257EPSS

CVE•added 2016/10/25 2:0 p.m.•38 views

CVE-2016-5513

CVE-2016-5513 affects Oracle Supply Chain Products Suite (Oracle Agile PLM) and specifically the File Manager subcomponent in Oracle Agile PLM, version 9.3.4 and 9.3.5. The vulnerability is described as an unspecified issue that allows remote authenticated users to affect confidentiality via File...

4.3CVSS4.2AI score0.01257EPSS

Exploits0References2Affected Software1

Cvelist•added 2016/10/25 2:0 p.m.•26 views

CVE-2016-5513

3.4AI score0.01257EPSS