WordPress Front File Manager Plugin 0.1 - Arbitrary File Upload

Front File Manager plugin is prone to an arbitrary file upload vulnerability. Restricted access to this script is not properly realized. In that way an attacker can to upload files containing malicious PHP code and run it in the context of the web server process. Other attacks are also possible...

WordPress Plugin Front File Manager 0.1 - Arbitrary File Upload

WordPress Plugin Front File Manager 0.1 - Arbitrary File Upload Exploit Title: Wordpress front file manager 0.1 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/front-file-manager/ Date: 07/06/2012 Exploit Author: Adrien Thierry adrien dot thierryfr at gmail dot com Vendor Homepage:...

Wordpress Front File Manager Plugin 0.1 Arbitrary File Upload

Exploit for php platform in category web applications Exploit Title: Wordpress front file manager 0.1 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/front-file-manager/ Exploit Author: Adrien Thierry adrien dot thierryfr at gmail dot com Vendor Homepage: http://www.webikon.sk/en...

WordPress Plugin Front File Manager 0.1 - Arbitrary File Upload

Exploit Title: Wordpress front file manager 0.1 Arbitrary File Upload Google Dork: inurl:wp-content/plugins/front-file-manager/ Date: 07/06/2012 Exploit Author: Adrien Thierry adrien dot thierryfr at gmail dot com Vendor Homepage: http://www.webikon.sk/en Software Link:...

Log1 CMS writeInfo() PHP Code Injection

Exploit for php platform in category web applications This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Mega File Manager 'name' Parameter Directory Traversal Vulnerability

Mega File Manager is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. Remote attackers can use specially crafted requests with directory- traversal sequences '../' to retrieve arbitrary files in the context of the application. Exploiting this...

Mega File Manager 1.0 File Download

Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on 'cimages.php' parameter 'name'. PoC :...

Mega File Manager - File Download Vulnerability

Exploit for php platform in category web applications Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on...

Mega File Manager - File Download

Mega File Manager - File Download Exploit Title: MegaFileManager FileDownload Vulnerability date: 2012-04-19 Author: i2sec-Min Gi Jo Software Link: http://www.awesomephp.com/?Download5 Version: Mega File Manager V 1.0 Tested on: Windows Description : There is no filtering on 'cimages.php' paramet...

update for chromium, v8 (important)

Update to 19.0.1079 Security Fixes bnc754456: High CVE-2011-3050: Use-after-free with first-letter handling High CVE-2011-3045: libpng integer issue from upstream High CVE-2011-3051: Use-after-free in CSS cross-fade handling High CVE-2011-3052: Memory corruption in WebGL canvas handling High...

http-qnap-nas-info NSE Script

Attempts to retrieve the model, firmware version, and enabled services from a QNAP Network Attached Storage NAS device. Script Arguments slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline,...

Ani-Shell v1.5 (Final) Released

Ani-Shell v1.5 Final Released Ani-Shell is a simple PHP shell with some unique features like Mass Mailer , A simple Web-Server Fuzzer , a DDoser etc! This shell has immense capabilities and have been written with some coding standards in mind for better editing and customization Features: Shell...

Pragyan CMS 2.6.1 Shell Upload

========================================== Exploit Title: pragyan 2.6.1 Upload File Author: Dr.KroOoZ Software : http://ignum.dl.sourceforge.net/project/pragyan/pragyan/2.6.1/pragyan-2.6.1.tar.gz Tested on: || Linux || Windows || Dork : ========================================== === Exploit ===...

CVE-2011-4825

Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted...

CVE-2011-4825

Static code injection vulnerability in inc/function.base.php in Ajax File and Image Manager before 1.1, as used in tinymce before 1.4.2, phpMyFAQ 2.6 before 2.6.19 and 2.7 before 2.7.1, and possibly other products, allows remote attackers to inject arbitrary PHP code into data.php via crafted...

QuiXplorer 2.3 Shell Upload

Exploit Title: QuiXplorer 2.3 = Bugtraq File Upload Vulnerability Google Dork: "QuiXplorer 2.3 - the QuiX project" Date: 13/11/2011 Author: PCA & krhrkrhr and Software Link: http://quixplorer.sourceforge.net/ Version: QuiXplorer 2.3 Tested on: linux ,windows CVE :...

QuiXplorer 2.3 - Bugtraq Arbitrary File Upload

Exploit Title: QuiXplorer 2.3 = Bugtraq File Upload Vulnerability Google Dork: "QuiXplorer 2.3 - the QuiX project" Date: 13/11/2011 Author: PCA & krhrkrhr and Software Link: http://quixplorer.sourceforge.net/ Version: QuiXplorer 2.3 Tested on: linux ,windows CVE :...

Ajax File and Image Manager <= 1.0 Code Injection Vulnerability - Active Check

Ajax File and Image Manager is prone to a remote PHP code injection vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Ajax File and Image Manager 1.0 Final - Remote Code Execution

Ajax File and Image Manager 1.0 Final - Remote Code Execution -------------------------------------------------------------------------- Ajax File and Image Manager v1.0 Final Remote Code Execution Vulnerability --------------------------------------------------------------------------...

Ajax File and Image Manager 1.0 Final - Remote Code Execution

-------------------------------------------------------------------------- Ajax File and Image Manager v1.0 Final Remote Code Execution Vulnerability -------------------------------------------------------------------------- author...........: Egidio Romano aka EgiX mail.............:...