61 matches found
Design/Logic Flaw
Artica Pandora FMS 7.44 allows arbitrary file upload leading to remote command execution via the File Repository Manager feature...
CVE-2020-13855
Artica Pandora FMS 7.44 allows arbitrary file upload leading to remote command execution via the File Repository Manager feature...
Artica Pandora FMS Code Execution Vulnerability
Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. A security vulnerability exists in Artica Pandora FMS version 7.42 and earlier. The vulnerability can be exploited by an...
CVE-2020-8511
In Artica Pandora FMS through 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the File Repository component, a different issue than CVE-2020-7935 and CVE-2020-8500...
CVE-2020-8511
In Artica Pandora FMS through 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the File Repository component, a different issue than CVE-2020-7935 and CVE-2020-8500...
Design/Logic Flaw
In Artica Pandora FMS through 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the File Repository component, a different issue than CVE-2020-7935 and CVE-2020-8500...
CVE-2020-8511
In Artica Pandora FMS through 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the File Repository component, a different issue than CVE-2020-7935 and CVE-2020-8500...
REDCap File Repository and File Upload Component Cross-Site Request Forgery Vulnerability
REDCap is a free, secure, web-based application. It is designed to support data mining research.File Repository and File Upload are among the components.File Repository is a file storage component; File Upload is a file upload component. A cross-site request forgery vulnerability exists in the...
CVE-2017-10961
REDCap before 7.5.1 has CSRF in the deletion feature of the File Repository and File Upload components...
CVE-2017-10961
REDCap before 7.5.1 has CSRF in the deletion feature of the File Repository and File Upload components...
Design/Logic Flaw
REDCap before 7.5.1 has CSRF in the deletion feature of the File Repository and File Upload components...
CVE-2017-10961
REDCap before 7.5.1 has CSRF in the deletion feature of the File Repository and File Upload components...
CVE-2017-10961
CVE-2017-10961 – REDCap before 7.5.1 suffers a cross-site request forgery (CSRF) in the deletion feature of the File Repository and File Upload components. The root cause is CSRF in the delete function, enabling a remote attacker to perform unauthorized operations in affected installations. Multi...
[Onapsis Security Advisory 2015-003] SAP Business Objects Unauthorized File Repository Server Write via CORBA
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security AdvisoryONAPSIS-2015-003: SAP Business Objects Unauthorized File Repository Server Write via CORBA 1. Impact on Business ===================== By exploiting this vulnerability a remote unauthenticated attacker would be able to overwri...
SAP Business Objects Unauthorized File Repository Server Read
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory ONAPSIS-2015-002: SAP Business Objects Unauthorized File Repository Server Read via CORBA 1. Impact on Business ===================== By exploiting this vulnerability a remote unauthenticated attacker would be able to retriev...
SAP Business Objects Unauthorized File Repository Server Write
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security AdvisoryONAPSIS-2015-003: SAP Business Objects Unauthorized File Repository Server Write via CORBA 1. Impact on Business ===================== By exploiting this vulnerability a remote unauthenticated attacker would be able to overwri...
w2box web 2.0 File Repository <= 2.5.1 Shell upload
Exploit for php platform in category web applications Exploit Title: w2box: web 2.0 File Repository = 2.5.1 Shell upload Date: 28/08/2011 Author: N3t.Crack3r Vendor or Software Link: http://clement.beffa.org/labs/projects/w2box/ Version: = 2.5.1 Category:: webapps Google dork: Powered by w2box,...
w2box-upload.txt
w2box: web 2.0 File Repository Upload Script Code Source http://labs.beffa.org/w2box/ Dork : "powered by w2box" Discovered by 4ur3v0ir Homepage Four: http://www.security-frog.org http://www.c-group.org http://hslteam.org Greetz To:NINF,frat2005,komtec1,kakalake,AntraX,fr34k And Staff...
ImI image file inclusion in script upload
w2box: web 2.0 File Repository Upload Script Code Source http://labs.beffa.org/w2box/ Dork : "powered by w2box" Discovered by 4ur3v0ir Homepage Four: http://www.security-frog.org http://www.c-group.org http://hslteam.org Greetz To:NINF,frat2005,komtec1,kakalake,AntraX,fr34k And Staff...
security flaw
Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server jbossas 3.2.4 through 4.0.5 allows remote authenticated users to read or modify arbitrary files, and possibly execute arbitrary code, via unspecified vectors related to the console manager...