708 matches found
AuraCMS 3.0 - Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: AuraCMS 3.0 Multiple Vulnerabilities Date: 05/28/2014 Author: Mustafa ALTINKAYNAK Download URL :http://auracms.org/ Software Link: http://codeload.github.com/auracms/AuraCMS/zip/master Vuln Category: CWE-79 XSS - CWE-98 LFI Test...
AuraCMS 3.0 Cross Site Scripting / Local File Inclusion
Exploit Title: AuraCMS 3.0 Multiple Vulnerabilities Date: 05/28/2014 Author: Mustafa ALTINKAYNAK Download URL :http://auracms.org/ Software Link: http://codeload.github.com/auracms/AuraCMS/zip/master Vuln Category: CWE-79 XSS - CWE-98 LFI Tested on: AuraCMS 3.0 Tested Local Platform : XAMP on...
AuraCMS 3.0 - Multiple Vulnerabilities
AuraCMS 3.0 - Multiple Vulnerabilities Exploit Title: AuraCMS 3.0 Multiple Vulnerabilities Date: 05/28/2014 Author: Mustafa ALTINKAYNAK Download URL :http://auracms.org/ Software Link: http://codeload.github.com/auracms/AuraCMS/zip/master Vuln Category: CWE-79 XSS - CWE-98 LFI Tested on: AuraCMS...
AuraCMS 3.0 - Multiple Vulnerabilities
Exploit Title: AuraCMS 3.0 Multiple Vulnerabilities Date: 05/28/2014 Author: Mustafa ALTINKAYNAK Download URL :http://auracms.org/ Software Link: http://codeload.github.com/auracms/AuraCMS/zip/master Vuln Category: CWE-79 XSS - CWE-98 LFI Tested on: AuraCMS 3.0 Tested Local Platform : XAMP on...
WordPress Photo-Gallery Cross Site Request Forgery Vulnerability
WordPress Photo-Gallery plugin suffers from a cross site request forgery vulnerability. Note that this finding houses site-specific data. + Wordpress Cross Site Request Forgery in Plugin photo-gallery + Date: 07/05/2014 + Risk: HIGH + Author: Felipe Andrian Peixoto + Vendor Homepage:...
eshtery CMS 'FileManager.aspx'本地文件泄漏漏洞
Bugtraq ID:65740 CVE ID:CVE-2014-2069 eshtery CMS是一款内容管理系统。 eshtery CMS不正确过滤用户的输入,允许远程攻击者利用漏洞提交请求读取系统任意文件内容。 0 eshtery CMS 目前没有详细解决方案提供: http://eshtery.she7ata.com/projects/eshtery/ http://www.example.com/path/FileManager.aspx?file=E:\web\admin.asp...
Wordpress WP-FileManager 1.3.0 File Disclosure
File disclosure vulnerability in WP-FileManager incl/libfile.php Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
WordPress-wp-FileManager-File-Download vulnerability using the method-vulnerability warning-the black bar safety net
Vulnerability details: the http://packetstormsecurity.com/files/121637/WordPress-wp-FileManager-File-Download.html Find vulnerabilities in websites: access to/wp-content/plugins/wp-filemanager/incl/libfile. php?& amp;path=../../&filename=wp-config. php&action=download, download wp-config, which...
WordPress WP FileManager Plugin "path" Parameter - Arbitrary File Download
WP FileManager plugin's "path" parameter is prone to an arbitrary file download vulnerability. It allows an attacker to download arbitrary files within the context of the web server process. Solution Update the plugin...
WordPress Plugin wp-FileManager - 'path' Arbitrary File Download
source: https://www.securityfocus.com/bid/59886/info The wp-FileManager plugin for WordPress is prone to a vulnerability that lets attackers download arbitrary files because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to download arbitrar...
Wordpress wp-FileManager Arbitrary File Download Vulnerability
Exploit for php platform in category web applications Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web Application...
WordPress wp-FileManager File Download
Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web Application Google Dorks: inurl:wp-content/plugins/wp-filemanager/...
WordPress Plugin wp-FileManager - path Arbitrary File Download
WordPress Plugin wp-FileManager - path Arbitrary File Download source: https://www.securityfocus.com/bid/59886/info The wp-FileManager plugin for WordPress is prone to a vulnerability that lets attackers download arbitrary files because the application fails to sufficiently sanitize user-supplied...
WordPress Plugin wp-FileManager - Arbitrary File Download
Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web Application Google Dorks: inurl:wp-content/plugins/wp-filemanager/...
WordPress WP FileManager Plugin - Arbitrary File Download
WP FileManager is prone to an arbitrary file download vulnerability. It allows an attacker to download arbitrary files within the context of the web server process. Solution Update the plugin...
WordPress Plugin wp-FileManager - Arbitrary File Download
WordPress Plugin wp-FileManager - Arbitrary File Download Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web...
[waraxe-2013-SA#098] - Directory Traversal Vulnerabilities in OpenCart 1.5.5.1
waraxe-2013-SA098 - Directory Traversal Vulnerabilities in OpenCart 1.5.5.1 =============================================================================== Author: Janek Vind "waraxe" Date: 19. March 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-98.html Description of vulnerabl...
OpenCart 1.5.5.1 Directory Traversal Vulnerability
OpenCart version 1.5.5.1 suffers from a directory traversal vulnerability. Directory Traversal Vulnerabilities in OpenCart 1.5.5.1 ===================================================== Author: Janek Vind "waraxe" Date: 19. March 2013 Location: Estonia, Tartu Web:...
OpenCart 1.5.5.1 Directory Traversal
waraxe-2013-SA098 - Directory Traversal Vulnerabilities in OpenCart 1.5.5.1 =============================================================================== Author: Janek Vind "waraxe" Date: 19. March 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-98.html Description of vulnerabl...
CVE-2012-5450
Cross-site request forgery CSRF vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple CMSMS 1.11.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that delete arbitrary files via the deld parameter...