[SECURITY] Fedora 11 Update: gnome-web-photo-0.7-9.fc11

gnome-web-photo contains a thumbnailer that will be used by GNOME applicati ons, including the file manager, to generate screenshots of web pages...

QuiXplorer 2.41beta LFI / Traversal / Code Execution

============================================= INTERNET SECURITY AUDITORS ALERT 2009-003 - Original release date: March 2nd, 2009 - Last revised: December 17th, 2009 - Discovered by: Juan Galiana Lara - Severity: 9/10 CVSS scored ============================================= I. VULNERABILITY...

[ISecAuditors Security Advisories] QuiXplorer <=2.4.1beta Remote Code Execution vulnerability

============================================= INTERNET SECURITY AUDITORS ALERT 2009-003 - Original release date: March 2nd, 2009 - Last revised: December 17th, 2009 - Discovered by: Juan Galiana Lara - Severity: 9/10 CVSS scored ============================================= I. VULNERABILITY...

Batch Picture Watemark 1.0 (.jpg File) Local Crash PoC

Exploit for unknown platform in category dos / poc ====================================================== Batch Picture Watemark 1.0 .jpg File Local Crash PoC ====================================================== Anti-Security Research Team & Security Institute + Bug : Batch Picture Watemark v1....

Graffiti CMS 1.x - Arbitrary File Upload

Graffiti CMS 1.x - Arbitrary File Upload Graffiti CMS includes a file manager component that allows unauthenticated users to upload files including asp.net pages which allow code execution. All versions are affected by this vulnerability. To exploit this issue, it only suffices to access to the...

osCommerce Online Merchant 2.2 RC2a - Code Execution

osCommerce Online Merchant 2.2 RC2a - Code Execution "; $message="POST ".$path.$adminpath."filemanager.php/login.php?action=save HTTP/1.1\r\n"; $message.="Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, /\r\n"; $message.="Accept-Language: zh-cn\r\n";...

Authentication flaw

Libra File Manager 1.18 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1...

CVE-2008-7027

Libra File Manager 1.18 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1...

CVE-2008-7027

Libra File Manager 1.18 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1...

CVE-2008-7027

CVE-2008-7027 affects Libra File Manager 1.18 and earlier. The vulnerability allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1, indicating a cookie-based auth bypass in the login flow. There is no detail in the provided documents about ...

CVE-2008-7001

CVE-2008-7001 is a documented unrestricted file upload vulnerability in the file manager of Creative Mind Creator CMS 5.0. The underlying issue permits remote attackers to execute arbitrary code via unknown vectors, enabling potential code execution with partial confidentiality/integrity/availabi...

Gazelle CMS 1.0 Remote Arbitrary Shell Upload Vulnerability

No description provided by source. ==================================================== | Gazelle CMS 1.0 Remote Arbitrary File Upload Vuln | My Home Page : WwW.Sec-Code.CoM | Founded By RoMaNcYxHaCkEr ==================================================== ! Discovered.: RoMaNcYxHaCkEr ! Vendor.......

MAXcms 3.11.20b Remote File Inclusion / Disclosure

MAXcms 3.11.20b RFI / File Disclosure Vulnerabilities I- Remote File Disclosure Vulnerabilities In /includes/inc.thcmsadmindirtree.php Code 22: if $GET"getjs"=="1" POC : http://localhost//microcms/includes/filemanager/special.php?fmincludesspecial=http://localhost/020.txt Thanx To ... | || \ \ \ ...

[SECURITY] Fedora 10 Update: gnome-web-photo-0.3-21.fc10

gnome-web-photo contains a thumbnailer that will be used by GNOME applicati ons, including the file manager, to generate screenshots of web pages...

[SECURITY] Fedora 11 Update: gnome-web-photo-0.7-5.fc11

gnome-web-photo contains a thumbnailer that will be used by GNOME applicati ons, including the file manager, to generate screenshots of web pages...

[SECURITY] Fedora 11 Update: kdelibs3-3.5.10-13.fc11

Libraries for the K Desktop Environment 3: KDE Libraries included: kdecore KDE core library, kdeui user interface, kfm file manager, khtmlw HTML widget, kio Input/Output, networking, kspell spelling checker, jscript javascript, kab addressbook, kimgio image manipulation...

CVE-2009-2263

Directory traversal vulnerability in index.php in Awesome PHP Mega File Manager 1.0 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathnam...

CVE-2009-2263

CVE-2009-2263 affects Awesome PHP Mega File Manager 1.0. The vulnerability is a directory traversal in index.php via the page parameter, allowing remote inclusion/execution of arbitrary local files. In some environments it can enable remote file inclusion using UNC shares or URL schemes (ftp, ftp...

Mega File Manager Remote File Vuln

Mega File Manager 1.0 index.php page Remote File Inclusion Vulnerability + Discovered By xhackerx + http://www.c99.mobi + Homepage : http://www.awesomephp.com/?MegaFileManager + Note : The script is full of RFI vulns,but I am tired to make querys now. + Local File Inclusion...

Mega File Manager 1.0 Local File Inclusion

Mega File Manager 1.0 index.php page Local File Inclusion Vulnerability + Discovered By SirGod + http://insecurity-ro.org + Homepage : http://www.awesomephp.com/?MegaFileManager + Note : The script is full of SQL Injection vulns,but I am tired to make querys now. + Local File Inclusion...