26 matches found
CVE-2014-8789
GleamTech FileVista prior to version 6.1 is affected by a path-traversal style issue during ZIP extraction. Remote authenticated users can craft paths inside a zip archive that are not properly handled during extraction, allowing creation of arbitrary files and potentially local code execution. I...
CVE-2014-8788
CVE-2014-8788 affects GleamTech FileVista prior to 6.1. The issue is a path leakage when saving a zip file, allowing remote authenticated users to obtain sensitive information via an error message that reveals the installation path. This is the concrete vulnerability detail documented in NVD; no ...
CVE-2014-8788
GleamTech FileVista before 6.1 allows remote authenticated users to obtain sensitive information via a crafted path when saving a zip file, which reveals the installation path in an error message...
gleamtech filevista/fileultimate 4.6 - Directory Traversal
No description provided by source. Hello I have recently released this vulnerability in a talk: http://soroush.secproject.com/blog/2012/11/file-in-the-hole/ - Title: GleamtechFileVista/FileUltimate 4.6 Directory Traversal can lead to file upload attack - Credit goes to: Soroush Dalili -...
Gleamtech FileVista/FileUltimate 4.6 Directory Traversal
Exploit for php platform in category web applications Hello I have recently released this vulnerability in a talk: http://soroush.secproject.com/blog/2012/11/xss-by-uploadingincluding-a-swf-file/ - Title: GleamtechFileVista/FileUltimate 4.6 Directory Traversal can lead to file upload attack -...
gleamtech filevistafileultimate 4.6 - Directory Traversal
gleamtech filevistafileultimate 4.6 - Directory Traversal Hello I have recently released this vulnerability in a talk: http://soroush.secproject.com/blog/2012/11/file-in-the-hole/ - Title: GleamtechFileVista/FileUltimate 4.6 Directory Traversal can lead to file upload attack - Credit goes to:...