CVE-2006-0172

The CVE-2006-0172 entry describes a Cross-site Scripting (XSS) vulnerability in the file manager utility of Hummingbird Collaboration (Hummingbird Enterprise Collaboration) 5.21 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML into an uploaded page, which is p...

PHPFM Arbitrary File Upload

The remote host appears to be running PHPFM, a web-based file manager written in PHP. The version of PHPFM installed on the remote host allows anyone to upload arbitrary files and then to execute them subject to the privileges of the web server user id. %NASLMINLEVEL 70300 C Tenable Network...

webadmin.php show Parameter Arbitrary File Access

webadmin.php was found on your web server. In its current configuration, this file manager CGI gives access to the whole filesystem of the machine to anybody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid18586;...

CVE-2002-1927

Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file...

CVE-2002-1815

CVE-2002-1815 affects Aquonics File Manager 1.5, with a directory traversal flaw in source.php and source.cgi that enables reading arbitrary files via a .. path segment in the URL. Impact details and exploit specifics are not further described in the provided documents beyond this vulnerability d...

CVE-2002-1815

Directory traversal vulnerability in source.php and source.cgi in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. dot dot in the URL...

CVE-2002-1926

CVE-2002-1926 affects Aquonics File Manager 1.5, where a directory traversal flaw in source.php allows remote attackers to read arbitrary files by supplying .. in the HTTP query string. The core issue is insufficient input validation/traversal of file paths in the PHP script. Public references co...

CVE-2002-1926

Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. dot dot in the HTTP query string...

CVE-2002-1927

CVE-2002-1927 affects Aquonics File Manager 1.5. The vulnerability allows users with edit privileges to modify user accounts by editing the file userlist.cgi , giving an attacker the ability to alter user data (integrity impact). The underlying CVSS metrics indicate a local attack vector with low...

File Upload Manager Sploits

Below is some code for a recent unpatched exploit for file managers using php as the base code. Share this with the world and help protect. File Upload Manager - Bypass File Extension and Arbitrary File Delete nothing to see here @ hackthissite.org Through an input validation flaw, users are able...

CVE-2005-1602

SQL injection vulnerability in login.asp for Net56 Browser Based File Manager 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field...

CVE-2005-1603

CVE-2005-1603 affects NiteEnterprises Remote File Manager 1.0. The vulnerability allows an attacker to trigger a denial-of-service (crash) by sending a crafted string to TCP port 7080. No exploit details or in-the-wild context are provided in the available documents. The sources list the impact a...

CVE-2005-1603

NiteEnterprises Remote File Manager 1.0 allows remote attackers to cause a denial of service crash via a crafted string to TCP port 7080...

CVE-2005-1602

Technical details for CVE-2005-1602 are not publicly available in the provided connected documents. No specific affected product/version or exploit information is confirmed here. Monitor for updates from official sources.

CVE-2005-1602

SQL injection vulnerability in login.asp for Net56 Browser Based File Manager 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field...

CVE-2005-1603

NiteEnterprises Remote File Manager 1.0 allows remote attackers to cause a denial of service crash via a crafted string to TCP port 7080...

Remote File Manager 1.0 Denial of Service Exploit

No description provided by source. / Server Remote File Manager DoS Exploit ------------------------------------------- INFGP - Hacking&security Research + Attacking localhost.. + Build DOS string + Buffer size = 300 byte + Sending bad format.. + localhost : Disconected! Greats: Infam0us...

Remote File Manager 1.0 - Denial of Service

Remote File Manager 1.0 - Denial of Service / Server Remote File Manager DoS Exploit ------------------------------------------- INFGP - Hacking&security Research + Attacking localhost.. + Build DOS string + Buffer size = 300 byte + Sending bad format.. + localhost : Disconected! Greats: Infam0us...

Remote File Manager 1.0 Denial of Service Exploit

Exploit for unknown platform in category dos / poc ================================================= Remote File Manager 1.0 Denial of Service Exploit ================================================= / Server Remote File Manager DoS Exploit ------------------------------------------- INFGP -...

Remote File Manager 1.0 - Denial of Service

/ Server Remote File Manager DoS Exploit ------------------------------------------- INFGP - Hacking&security Research + Attacking localhost.. + Build DOS string + Buffer size = 300 byte + Sending bad format.. + localhost : Disconected! Greats: Infam0us...