ezcms <= 1.2 (bsql/admin byapss) Multiple Vulnerabilities

No description provided by source. -+================================================================================+- -+ EZCMS = 1.2 Multiple Remote Vulnerabilitys +- -+================================================================================+- Discovered By: t0pP8uZz Discovered On: 19 M...

DM FileManager 3.9.4 - Remote File Disclosure Vulnerability

No description provided by source. + DM FileManager 3.9.4 Remote File Dislosure Vulnerability + Author : Stack + Greetz : V4 Team & Sec R1z + Download Script : http://www.dutchmonkey.com/?file=products/dm-filemanager/downloadresponse.html&download=direct + Xpl : +...

Frog CMS 0.9.5 - Multiple CSRF Vulnerabilities

No description provided by source. !--- Title: Frog CMS 0.9.5 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Sun 11 Jul 2010 10:22:48 AM EEST Vendor: http://www.madebyfrog.com/ Download: http://www.madebyfrog.com/public/download/files/frog095.tar.gz --- -= CSRF PoC 1 - Create...

Libra PHP File Manager <= 1.18 Insecure Cookie Handling Vulnerability

No description provided by source. + Libra PHP File Manager Insecure Cookie Handling Vulnerability + Discovered By Stack + Greetz : All my freind --- exploit: javascript:document.cookie = user=1; path=/; document.cookie = pass=1; path=/; milw0rm.com 2008-09-26...

Mega File Manager - File Download Vulnerability

No description provided by source. Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on 'cimages.php'...

Wordpress Front File Manager Plugin 0.1 - Arbitrary File Upload

No description provided by source. Exploit Title: Wordpress front file manager 0.1 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/front-file-manager/ Date: 07/06/2012 Exploit Author: Adrien Thierry adrien dot thierryfr at gmail dot com Vendor Homepage: http://www.webikon.sk/en Softwa...

Flex File Manager Shell Upload Vulnerability

No description provided by source. ==================================================== Flex File Manager Shell Upload Vulnerability ==================================================== Flex File Manager Shell Upload Vulnerability Author: Mr.MLL Published: 2010-04-19 Verified: yes Download Exploi...

SUSE 7.0 KFM Insecure TMP File Creation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2629/info KFM is the KDE File Manager, included with version 1 of the KDE base package in most Linux installations. KFM is designed as a graphical, easily navigated interface to the Linux Filesystem. A problem with KFM...

WD-CMS 3.0 - Multiple Vulnerabilities

No description provided by source. Exploit Title: WD-CMS 3.0 Multiple Vulnerabilities Date: December 31st, 2009 Author: Sora Software Link: http://www.webdiamond.net/cms.html Version: 3.0 Tested on: Windows Vista and Linux Backtrack 3 --------------------------------------------------------------...

Agora-Project 2.12.11 Arbitrary File Upload Vulnerability

No description provided by source. Exploit Title: agora-project2.12.1112-2011 Remote Shell Upload Google Dork: n0 N0obs Date: 10/06/2012 Exploit Author: Misa3l Vendor Homepage: http://sourceforge.net/projects/agora-project/ Software Link:...

MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload Vulnerability

No description provided by source. ============================================== File Upload Vulnerability Plugins tinymce ============================================== http://tinymce.moxiecode.com/pluginsfilemanager.php Major version 3 Minor version 2.2.3 Author : Vladimir Vorontsov Contact :...

elFinder 2.0 - file manager for web(rc1) - File Upload Vulnerability

Usage Info Info : u can upload .php .php3 .php6 .txt .html .pl .htaccess and ... Upload Your webshell and load from : site.com/var/upload/ro0t.php site.com/files/upload/ro0t.php site.com/var/upload/ro0t.php for get file url double click on your file to open file iframe page |/ o o...

Konqueror: Multiple vulnerabilities

Background Konqueror is the KDE web browser and file manager. Description Multiple vulnerabilities have been discovered in Konqueror. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted web site using Konqueror,...

Lunar CMS 3.3 - Remote Command Execution

Lunar CMS 3.3 - Remote Command Execution !/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written...

Lunar CMS 3.3 - Remote Command Execution

!/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so...

Lunar CMS 3.3 Unauthenticated Remote Command Execution

!/usr/bin/env python Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so...

Lunar CMS 3.3 Unauthenticated Remote Command Execution Exploit

Summary Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so popular PHP5 & MySQL. Description Lunar CMS suffers from an unauthenticated arbitrary command execution vulnerability. The issue is caused due to the improper...

openSUSE Security Update : chromium / v8 (openSUSE-SU-2012:0466-1)

Update to 19.0.1079 Security Fixes bnc754456 : - High CVE-2011-3050: Use-after-free with first-letter handling - High CVE-2011-3045: libpng integer issue from upstream - High CVE-2011-3051: Use-after-free in CSS cross-fade handling - High CVE-2011-3052: Memory corruption in WebGL canvas handling...

Input validation

Multiple incomplete blacklist vulnerabilities in the filemanager::isFileExclude method in the Media Manager in Dotclear before 2.6.3 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a 1 double extension or 2 .php5, 3 .phtml, or some other PHP file extension...

DevExpress ASPxFileManager 10.2 &lt; 13.2.8 - Directory Traversal

Advisory: Directory Traversal in DevExpress ASP.NET File Manager During a penetration test RedTeam Pentesting discovered a directory traversal vulnerability in DevExpress' ASP.NET File Manager and File Upload. Attackers are able to read arbitrary files by specifying a relative path. Details =====...