CVE-2014-2303

Multiple SQL injection vulnerabilities in the file browser component wefs.php in webEdition CMS before 6.2.7-s1.2 and 6.3.x through 6.3.8 before -s1 allow remote attackers to execute arbitrary SQL commands via the 1 table or 2 order parameter...

Sql injection

Multiple SQL injection vulnerabilities in the file browser component wefs.php in webEdition CMS before 6.2.7-s1.2 and 6.3.x through 6.3.8 before -s1 allow remote attackers to execute arbitrary SQL commands via the 1 table or 2 order parameter...

CVE-2014-2303

Multiple SQL injection vulnerabilities in the file browser component wefs.php in webEdition CMS before 6.2.7-s1.2 and 6.3.x through 6.3.8 before -s1 allow remote attackers to execute arbitrary SQL commands via the 1 table or 2 order parameter...

Synology DSM 4.3-3810 - Directory Traversal

Synology DSM 4.3-3810 - Directory Traversal Title: Synology DSM multiple directory traversal Version affected: = 4.3-3810 Vendor: Synology Discovered by: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it Twitter: @andreaf83 Status: patched CVE: 2013-6987 I'm again he...

Web File Browser 0.4bX UploadFile/DownloadFile Vulenrabilities

Exploit for php platform in category web applications + Author: TUNISIAN CYBER + Exploit Title: Web File Browser 0.4bX UploadFile/DownloadFile Vulenrabilities + Date: 14-12-2013 + Category: WebApp + Vendor: http://sourceforge.net/projects/webfilebrowser/files/webfilebrowser/ + Google Dork:...

CVE-2011-4300

The filebrowser component in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not properly restrict access to category and course data, which allows remote attackers to obtain potentially sensitive information via a request for a file...

Design/Logic Flaw

The filebrowser component in Moodle 2.0.x before 2.0.5 and 2.1.x before 2.1.2 does not properly restrict access to category and course data, which allows remote attackers to obtain potentially sensitive information via a request for a file...

PT-2012-1848 · Moodle · Moodle

Name of the Vulnerable Software and Affected Versions: Moodle versions 2.0.0 through 2.0.4 Moodle versions 2.1.0 through 2.1.1 Description: The file browser component does not properly restrict access to category and course data, allowing remote attackers to obtain potentially sensitive informati...

IMCE Mkdir Shell Upload

Exploit Title: IMCE Mkdir == Remote File Upload Vulnerability Date: 27/06/2012 Author: Ryuzaki Lawlet Web/Blog: http://justryuz.blogspot.com Category: webapps version: - Vendor or Software Link: http://drupal.org/project/imcemkdir Google dork: inurl:"/imce?dir=" intitle:"File Browser" Tested on:...

DigPHP Remote File Disclosure

Exploit Title: DigPHP - Web Based File Browser = Remote File Disclosure Vulnerability Date: 26/06/2012 Author: Ryuzaki Lawlet Web/Blog: http://justryuz.blogspot.com Category: webapps version: - Vendor or Software Link: http://sourceforge.net/projects/digphp/ Google dork: inurl:/dig.php?dir=./...

WordPress PDW File Browser 1.1 Shell Upload

Description : Wordpress Plugins - PDW File Browser Arbitrary File Upload Vulnerability Version : 1.1 Link : http://wordpress.org/extend/plugins/pdw-file-browser/ Plugins : http://downloads.wordpress.org/plugin/pdw-file-browser.zip Date : 30-05-2012 Google Dork :...

Wordpress Plugins PDW File Browser Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Description : Wordpress Plugins - PDW File Browser Arbitrary File Upload Vulnerability Version : 1.1 Link : http://wordpress.org/extend/plugins/pdw-file-browser/ Plugins : http://downloads.wordpress.org/plugin/pdw-file-browser.zip Google Dork ...

GetSimple v3.1 <= (ShellUpload/FD) Multiple Vulnerabilities

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

Cloupia End-to-end FlexPod Management - Directory Traversal

Cloupia End-to-end FlexPod Management - Directory Traversal Cloupia End-to-end FlexPod Management - Directory Traversal Vulnerability Advisory Information Advisory ID: KUSTODIAN-2011-011 Date published: Jan 13, 2011 Vulnerability Information Class: Directory Traversal Remotely Exploitable: Yes...

Cloupia End-To-End FlexPod Management Directory Traversal

Cloupia End-to-end FlexPod Management - Directory Traversal Vulnerability Advisory Information Advisory ID: KUSTODIAN-2011-011 Date published: Jan 13, 2011 Vulnerability Information Class: Directory Traversal Remotely Exploitable: Yes Locally Exploitable: Yes Software Description Provides...

CVE-2011-4831

Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f encoded dot dot in the file parameter in a download action...

Directory traversal

Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f encoded dot dot in the file parameter in a download action...

CVE-2011-4831

Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f encoded dot dot in the file parameter in a download action...

CVE-2011-4831

CVE-2011-4831 affects Web File Browser prior to 0.4b14. The webFileBrowser.php download action is vulnerable to a directory traversal via an encoded dot-dot (%2f) in the file parameter, allowing remote authenticated users to read arbitrary files. Reported impact from sources indicates partial con...

Web File Browser <= 0.4b14 File Download Vulnerability - Active Check

Web File Browser is prone to file download vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...