Lucene search
+L

91 matches found

CNVD
CNVD
added 2019/06/27 12:0 a.m.2 views

SQL Injection Vulnerability in Purple File Management System

Purple Software Systems Ltd. is a software services and systems integration provider. A SQL injection vulnerability exists in the Purple File Management System, which can be exploited by attackers to obtain sensitive information from the database...

7.6AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

fims File Management System <= 1.2.1a Multiple Vulnerabilities

No description provided by source. Exploit Title: fims - File Management System = 1.2.1a SQL Injection and Vulnerability Date: 2011-10-19 Author: Skraps jackie.craig.sparksatlive.com jackie.craig.sparksatgmail.com @skrapsfoo Software Link: http://fims.codeplex.com/ Version: 1.2.1a tested...

7.1AI score
Exploits0
myhack58
myhack58
added 2012/12/29 12:0 a.m.28 views

PHPDrive privilege elevation vulnerability and the Fix-vulnerability warning-the black bar safety net

PHPDrive is set to run in the PHP environment file management system, can be applied to a network disk, enterprise document management, schools, team management, software, file, CMS, etc. includes/user.lib.php Row 8 7 function getip ifisset$SERVER"HTTPXFORWARDEDFOR"&&$SERVER"HTTPXFORWARDEDFOR" $i...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/03/05 12:0 a.m.29 views

Debian DSA-2423-1 : movabletype-opensource - several vulnerabilities

Several vulnerabilities were discovered in Movable Type, a blogging system : Under certain circumstances, a user who has 'Create Entries' or'Manage Blog' permissions may be able to read known files on the local file system. The file management system contains shell command injection...

7.5CVSS5.9AI score0.02677EPSS
Exploits2References12
NVD
NVD
added 2012/03/03 4:4 a.m.22 views

CVE-2012-0319

The file-management system in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 allows remote authenticated users to execute arbitrary commands by leveraging the file-upload feature, related to an "OS Command Injection" issue...

6.5CVSS7.2AI score0.02421EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2012/03/03 4:4 a.m.19 views

CVE-2012-0319

The file-management system in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 allows remote authenticated users to execute arbitrary commands by leveraging the file-upload feature, related to an "OS Command Injection" issue...

6.5CVSS6AI score0.02421EPSS
Exploits0References2
exploitpack
exploitpack
added 2011/10/20 12:0 a.m.8 views

fims File Management System 1.2.1a - Multiple Vulnerabilities

fims File Management System 1.2.1a - Multiple Vulnerabilities Exploit Title: fims - File Management System execute"select from fimsuser where email='$email' and password=md5'$password'"; if $db-numrows$rs0 return true; else return false; Line 51 of index.php: if isset$REQUESTf...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2011/10/20 12:0 a.m.21 views

fims File Management System 1.2.1a - Multiple Vulnerabilities

Exploit Title: fims - File Management System execute"select from fimsuser where email='$email' and password=md5'$password'"; if $db-numrows$rs0 return true; else return false; Line 51 of index.php: if isset$REQUESTf assertisnumeric$REQUESTf; $file = getfiledata$gdb, $REQUESTf; header"Accept-Range...

7.4AI score
Exploits0
0day.today
0day.today
added 2011/10/19 12:0 a.m.12 views

fims File Management System <= 1.2.1a Multiple Vulnerabilities

Exploit for php platform in category web applications 0day.today 2018-04-13...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2005/12/16 12:0 a.m.29 views

phpXplorer XSS vuln.

phpXplorer XSS vuln. Vuln. discovered by : r0t Date: 16 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/phpxplorer-xss-vuln.html vendor:http://www.phpxplorer.org/ affected version:0.9.12 and prior Product Description: phpXplorer is a free open source file management system / explor...

6.3AI score
Exploits0
securityvulns
securityvulns
added 2005/03/13 12:0 a.m.40 views

[SECURITYREASON.COM] SQL injection and XSS in paFileDB

-= SecurityReason-2005-SRA03 =- -= SQL injection and XSS in paFileDB =- Author: sp3x Date: 12 March 2005 Affected software : =================== paFileDB version : =3.1 Description : ============= paFileDB is designed to allow webmasters have a database of files for download on their site. To add...

6.9AI score
Exploits0
Rows per page
Query Builder