91 matches found
SQL Injection Vulnerability in Purple File Management System
Purple Software Systems Ltd. is a software services and systems integration provider. A SQL injection vulnerability exists in the Purple File Management System, which can be exploited by attackers to obtain sensitive information from the database...
fims File Management System <= 1.2.1a Multiple Vulnerabilities
No description provided by source. Exploit Title: fims - File Management System = 1.2.1a SQL Injection and Vulnerability Date: 2011-10-19 Author: Skraps jackie.craig.sparksatlive.com jackie.craig.sparksatgmail.com @skrapsfoo Software Link: http://fims.codeplex.com/ Version: 1.2.1a tested...
PHPDrive privilege elevation vulnerability and the Fix-vulnerability warning-the black bar safety net
PHPDrive is set to run in the PHP environment file management system, can be applied to a network disk, enterprise document management, schools, team management, software, file, CMS, etc. includes/user.lib.php Row 8 7 function getip ifisset$SERVER"HTTPXFORWARDEDFOR"&&$SERVER"HTTPXFORWARDEDFOR" $i...
Debian DSA-2423-1 : movabletype-opensource - several vulnerabilities
Several vulnerabilities were discovered in Movable Type, a blogging system : Under certain circumstances, a user who has 'Create Entries' or'Manage Blog' permissions may be able to read known files on the local file system. The file management system contains shell command injection...
CVE-2012-0319
The file-management system in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 allows remote authenticated users to execute arbitrary commands by leveraging the file-upload feature, related to an "OS Command Injection" issue...
CVE-2012-0319
The file-management system in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 allows remote authenticated users to execute arbitrary commands by leveraging the file-upload feature, related to an "OS Command Injection" issue...
fims File Management System 1.2.1a - Multiple Vulnerabilities
fims File Management System 1.2.1a - Multiple Vulnerabilities Exploit Title: fims - File Management System execute"select from fimsuser where email='$email' and password=md5'$password'"; if $db-numrows$rs0 return true; else return false; Line 51 of index.php: if isset$REQUESTf...
fims File Management System 1.2.1a - Multiple Vulnerabilities
Exploit Title: fims - File Management System execute"select from fimsuser where email='$email' and password=md5'$password'"; if $db-numrows$rs0 return true; else return false; Line 51 of index.php: if isset$REQUESTf assertisnumeric$REQUESTf; $file = getfiledata$gdb, $REQUESTf; header"Accept-Range...
fims File Management System <= 1.2.1a Multiple Vulnerabilities
Exploit for php platform in category web applications 0day.today 2018-04-13...
phpXplorer XSS vuln.
phpXplorer XSS vuln. Vuln. discovered by : r0t Date: 16 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/phpxplorer-xss-vuln.html vendor:http://www.phpxplorer.org/ affected version:0.9.12 and prior Product Description: phpXplorer is a free open source file management system / explor...
[SECURITYREASON.COM] SQL injection and XSS in paFileDB
-= SecurityReason-2005-SRA03 =- -= SQL injection and XSS in paFileDB =- Author: sp3x Date: 12 March 2005 Affected software : =================== paFileDB version : =3.1 Description : ============= paFileDB is designed to allow webmasters have a database of files for download on their site. To add...