CVE-2012-0322

The EStrongs ES File Explorer application 1.6.0.2 through 1.6.1.1 for Android does not properly restrict access, which allows remote attackers to read arbitrary files via vectors involving an unspecified function...

ES File Explorer fails to restrict access permissions

Overview ES File Explorer provided by EStrongs, Inc. contains an issue where access permissions are not restricted. ES File Explorer provided by EStrongs Inc. is a file and application manager. ES File Explorer contains an issue where access permissions are not restricted. Shiongu of satoweb and...

JVN#08871006: ES File Explorer fails to restrict access permissions

ES File Explorer provided by EStrongs Inc. is a file and application manager. ES File Explorer contains an issue where access permissions are not restricted. Impact When using a specific function, a remote attacker may obtain local files that the application has permissions to view. Solution Upda...

AjaXplorer Detection

This host is running AjaXplorer, a file explorer for remotely managing files on a web server. OpenVAS Vulnerability Test $Id: gbAjaXplorerdetect.nasl 5721 2017-03-24 14:42:01Z cfi $ AjaXplorer Detection Authors: Michael Meyer Copyright: Copyright c 2010 Greenbone Networks GmbH This program is fre...

File Explorer V1.2.2 Remote Shell Upload Vulnerability

Exploit for unknown platform in category web applications ====================================================== File Explorer V1.2.2 Remote Shell Upload Vulnerability ======================================================...

Total Commander Detection

Total Commander, a shareware file explorer for Windows, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid40926; scriptversion"1.12"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/02/06"; scriptnameenglish:"Total...

CVE-2009-1495

Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb...

Improper access control

Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb...

CVE-2009-1495

CVE-2009-1495 affects Web File Explorer 3.1. The vulnerability is due to improper access control that stores sensitive information under the web root, allowing remote attackers to download the database (data/db.mdb) via a direct request. Documented impact is exposure of the database file; no reme...

CVE-2009-1495

Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb...

CVE-2009-1323

SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

Sql injection

SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2009-1323

CVE-2009-1323 describes an SQL injection in Web File Explorer 3.1, where body.asp fails to sanitize the id parameter, allowing remote attackers to inject and execute arbitrary SQL commands. This is triggered via the id parameter in the request, enabling potential data disclosure or modification o...

CVE-2009-1323

SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

Code injection

body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension...

CVE-2009-1314

body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension...

CVE-2009-1314

body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension...

CVE-2009-1314

The CVE-2009-1314 entry concerns body.asp in Web File Explorer 3.1, where the savefile action accepts a file parameter containing an executable extension, enabling remote attackers to create arbitrary files and execute arbitrary code. Affected component: Web File Explorer 3.1’s web interface (bod...

tc701-traverse.txt

HISPASEC Security Advisory http://blog.hispasec.com/lab/ Name : 2K7SEPT6 Total Commander 7.01 Remote FTP Client Directory Traversal Class : Remote Directory Traversal Threat level : HIGH Discovered : 2007-08-25 Published : 2007-09-06 Credit : Gynvael Coldwind Vulnerable : 7.01 and prior == Abstra...

SUSE-SA:2006:056: gzip

The remote host is missing the patch for the advisory SUSE-SA:2006:056 gzip. The gzip tool does not handle some specific values correctly when unpacking archives. This leads to vulnerabilities like buffer overflows or infinite loops. Various different programs like mail clients, file explorer, et...