Quate CMS 0.3.4 (RFI/LFI/XSS/DT) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ================================================================ Quate CMS 0.3.4 RFI/LFI/XSS/DT Multiple Remote Vulnerabilities ================================================================ Digital Security Research Group DSecRG Advisor...

QTO File Manager 1.0 - 'qtofm.php' Arbitrary File Upload

source: https://www.securityfocus.com/bid/29072/info QTO File Manager is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code because the application fails to sanitize user-supplied input. An attacker can leverage this issue to execute arbitrary code on an...

QTO File Manager 1.0 - qtofm.php Arbitrary File Upload

QTO File Manager 1.0 - qtofm.php Arbitrary File Upload source: https://www.securityfocus.com/bid/29072/info QTO File Manager is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code because the application fails to sanitize user-supplied input. An attacker c...

[SECURITY] Fedora 8 Update: gnome-web-photo-0.3-10.fc8

gnome-web-photo contains a thumbnailer that will be used by GNOME applicati ons, including the file manager, to generate screenshots of web pages...

Parallels virtuozzo's VZPP multiple csrf vulnerabilities

hello, Parallels www.parallels.com has developed a server virtualization system called Virtuozzo. It comes with a web interface, called VZPP, very similar to parallel's Plesk that allows system admins to manage their virtual servers. Unfortunatly this nice web interface is affected by multiple cs...

Parallels Virtuozzo Containers 3.0.0-25.4/4.0.0-365.6 VZPP Interface File Manger - Cross-Site Request Forgery

source: https://www.securityfocus.com/bid/28589/info Parallels Virtuozzo Containers is prone to a cross-site request-forgery vulnerability. Exploiting the issue will allow a remote attacker to use a victim's currently active session to perform certain file-management actions with the privileges o...

[SECURITY] Fedora 8 Update: gnome-web-photo-0.3-9.fc8

gnome-web-photo contains a thumbnailer that will be used by GNOME applicati ons, including the file manager, to generate screenshots of web pages...

[SECURITY] Fedora 8 Update: gnome-web-photo-0.3-8.fc8

gnome-web-photo contains a thumbnailer that will be used by GNOME applicati ons, including the file manager, to generate screenshots of web pages...

CVE-2003-1539

The CVE-2003-1539 entry affects the ONEdotOH Simple File Manager (SFM) CGI (fm.php) prior to version 0.21. The vulnerability arises from improper validation of directory and file names, enabling cross-site scripting (XSS) by an attacker who can supply crafted names. Impact is remote XSS via manip...

CVE-2003-1539

Cross-site scripting XSS vulnerability in ONEdotOH Simple File Manager SFM before 0.21 allows remote attackers to inject arbitrary web script or HTML via 1 file names and 2 directory names...

Heap overflow

Heap-based buffer overflow in Open File Manager service ofmnt.exe in St. Bernard Open File Manager 9.5 allows remote attackers to execute arbitrary code via a long request...

CVE-2007-6281

Heap-based buffer overflow in Open File Manager service ofmnt.exe in St. Bernard Open File Manager 9.5 allows remote attackers to execute arbitrary code via a long request...

CVE-2007-6281

St. Bernard Open File Manager 9.5 is affected by a heap-based buffer overflow in the ofmnt.exe Open File Manager service. The flaw allows remote code execution by sending an oversized request; authentication is not required. Affected product/version: St. Bernard Open File Manager 9.5. Root cause:...

CVE-2007-6281

Heap-based buffer overflow in Open File Manager service ofmnt.exe in St. Bernard Open File Manager 9.5 allows remote attackers to execute arbitrary code via a long request...

KLA10341 ACE vulnerability in St. Bernard Open File Manager

A buffer overflow was found in St. Bernard Open File Manager. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products St-Bernard-Open-File-Manager CVE list...

St. Bernard Open File Manager buffer overflow

Buffer overflow on dynamic TCP port traffic parsing...

ZDI-07-078: St. Bernard Open File Manager Heap Overflow Vulnerability

ZDI-07-078: St. Bernard Open File Manager Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-078.html December 17, 2007 -- CVE ID: CVE-2007-6281 -- Affected Vendor: St. Bernard -- Affected Products: Open File Manager 9.5 -- TippingPointTM IPS Customer Protection:...

St. Bernard Open File Manager Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of St. Bernard Open File Manager. Authentication is not required to exploit this vulnerability. The specific flaw resides in the Open File Manager service, ofmnt.exe, which listens by default on a random TCP...

[SECURITY] Fedora 8 Update: xfce4-fsguard-plugin-0.4.0-2.fc8

A little Xfce plugin, which checks the free space on the chosen mountpoint frequently. It displays 4 different icons and a message box, depending on t he free space. The amount of free disk space is visible in a tooltip. If you left-click on its icon, it opens the mountpoint directory in the file...

[SECURITY] Fedora 8 Update: Thunar-0.9.0-2.fc8

Thunar is a new modern file manager for the Xfce Desktop Environment. It has been designed from the ground up to be fast and easy-to-use. Its user interface is clean and intuitive, and does not include any confusing or useless options. Thunar is fast and responsive with a good start up time and...