Lucene search
K

20392 matches found

Nuclei
Nuclei
added 14 hours ago30 views

Joomla! Component Affiliate Datafeeds 880 - Local File Inclusion

A directory traversal vulnerability in the Affiliate Datafeeds comdatafeeds component build 880 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1979 info: name: Joomla! Component Affiliate Datafeeds 880 - Local Fi...

6.8CVSS6.1AI score0.1115EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago34 views

Chyrp 2.x - Local File Inclusion

A directory traversal vulnerability in Chyrp 2.1 and earlier allows remote attackers to include and execute arbitrary local files via a ..%2F encoded dot dot slash in the action parameter to the default URI. id: CVE-2011-2744 info: name: Chyrp 2.x - Local File Inclusion author: daffainfo severity...

6.8CVSS6.2AI score0.0896EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago31 views

Joomla! Component Jstore - 'Controller' Local File Inclusion

A directory traversal vulnerability in Jstore comjstore component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. dot dot in the controller parameter to index.php. id: CVE-2010-5286 info: name: Joomla! Component Jstore - 'Controller...

10CVSS6.1AI score0.11382EPSS
Exploits1References4
Nuclei
Nuclei
added 14 hours ago60 views

Tiki Wiki CMS Groupware 5.2 - Local File Inclusion

Tiki Wiki CMS Groupware 5.2 is susceptible to a local file inclusion vulnerability. id: CVE-2010-4239 info: name: Tiki Wiki CMS Groupware 5.2 - Local File Inclusion author: 0xakoko severity: critical description: Tiki Wiki CMS Groupware 5.2 is susceptible to a local file inclusion vulnerability...

9.8CVSS7.2AI score0.1343EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago38 views

Joomla! Component Advertising 0.25 - Local File Inclusion

A directory traversal vulnerability in the Advertising comadvertising component 0.25 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1473 info: name: Joomla! Component...

6.8CVSS6.1AI score0.08163EPSS
Exploits2References4
Nuclei
Nuclei
added 14 hours ago27 views

Joomla! Component AlphaUserPoints 1.5.5 - Local File Inclusion

A directory traversal vulnerability in the AlphaUserPoints comalphauserpoints component 1.5.5 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. dot dot in the view parameter to index.php. id: CVE-2010-1476 info: name: Joomla! Componen...

6.8CVSS6.1AI score0.0994EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago28 views

Joomla! Component Horoscope 1.5.0 - Local File Inclusion

A directory traversal vulnerability in the Daily Horoscope comhoroscope component 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1472 info: name: Joomla! Component Horoscope 1.5.0 - Local File Inclusion...

7.5CVSS6.1AI score0.13351EPSS
Exploits2References5
Nuclei
Nuclei
added 14 hours ago23 views

Joomla! Component Matamko 1.01 - Local File Inclusion

A directory traversal vulnerability in the Matamko commatamko component 1.01 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1495 info: name: Joomla! Component Matamko 1.01 - Local File Inclusion author: daffainfo...

7.5CVSS6.1AI score0.18938EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago35 views

Joomla! Component redSHOP 1.0 - Local File Inclusion

A directory traversal vulnerability in the redSHOP comredshop component 1.0.x for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the view parameter to index.php. id: CVE-2010-1531 info: name: Joomla! Component redSHOP 1.0 - Local File Inclusion author: daffainfo...

7.5CVSS6.1AI score0.16915EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago67 views

phpPgAdmin <=4.2.1 - Local File Inclusion

phpPgAdmin 4.2.1 is vulnerable to local file inclusion in libraries/lib.inc.php when register globals is enabled. Remote attackers can read arbitrary files via a .. dot dot in the language parameter to index.php. id: CVE-2008-5587 info: name: phpPgAdmin =4.2.1 - Local File Inclusion author:...

4.3CVSS6.1AI score0.12865EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago44 views

Joomla! <=2.0.0 RC2 - Local File Inclusion

Joomla! 2.0.0 RC2 and earlier are susceptible to local file inclusion in the eXtplorer module comextplorer that allows remote attackers to read arbitrary files via a .. dot dot in the dir parameter in a showerror action. id: CVE-2008-4764 info: name: Joomla! =2.0.0 RC2 - Local File Inclusion...

5CVSS6.1AI score0.16505EPSS
Exploits1References4
Nuclei
Nuclei
added 14 hours ago76 views

Joomla! Image Browser 0.1.5 rc2 - Local File Inclusion

Joomla! Image Browser 0.1.5 rc2 is susceptible to local file inclusion via comimagebrowser which could allow remote attackers to include and execute arbitrary local files via a .. dot dot in the folder parameter to index.php. id: CVE-2008-4668 info: name: Joomla! Image Browser 0.1.5 rc2 - Local...

9CVSS6.2AI score0.21476EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago41 views

Horde/Horde Groupware - Local File Inclusion

Horde before 3.2.4 and 3.3.3 and Horde Groupware before 1.1.5 are susceptible to local file inclusion in framework/Image/Image.php because it allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the HordeImage driver name. id: CVE-2009-0932 inf...

6.4CVSS6.2AI score0.41263EPSS
Exploits8References5
Nuclei
Nuclei
added 14 hours ago31 views

Joomla! Component RWCards 3.0.11 - Local File Inclusion

A directory traversal vulnerability in captcha/captchaimage.php in the RWCards comrwcards 3.0.11 component for Joomla! when magicquotesgpc is disabled allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the img parameter. id: CVE-2008-6172 inf...

6.8CVSS6.2AI score0.12284EPSS
Exploits1References4
Nuclei
Nuclei
added 14 hours ago47 views

Joomla! ionFiles 4.4.2 - Local File Inclusion

Joomla! ionFiles 4.4.2 is susceptible to local file inclusion in download.php in the ionFiles comionfiles that allows remote attackers to read arbitrary files via a .. dot dot in the file parameter. id: CVE-2008-6080 info: name: Joomla! ionFiles 4.4.2 - Local File Inclusion author: daffainfo...

5CVSS6.1AI score0.10637EPSS
Exploits1References4
Nuclei
Nuclei
added 14 hours ago80 views

Squirrelmail <=1.4.6 - Local File Inclusion

SquirrelMail 1.4.6 and earlier versions are susceptible to a PHP local file inclusion vulnerability in functions/plugin.php if registerglobals is enabled and magicquotesgpc is disabled. This allows remote attackers to execute arbitrary PHP code via a URL in the plugins array parameter. id:...

7.5CVSS6.3AI score0.47196EPSS
Exploits2References5
Nuclei
Nuclei
added 14 hours ago100 views

Drupal avatar_uploader v7.x-1.0-beta8 - Local File Inclusion

In avataruploader v7.x-1.0-beta8 the view.php program doesn't restrict file paths, allowing unauthenticated users to retrieve arbitrary files. id: CVE-2018-9205 info: name: Drupal avataruploader v7.x-1.0-beta8 - Local File Inclusion author: daffainfo severity: high description: In avataruploader...

7.5CVSS7.2AI score0.56924EPSS
Exploits6References5
Nuclei
Nuclei
added 14 hours ago19 views

WordPress Candidate Application Form <= 1.3 - Local File Inclusion

WordPress Candidate Application Form = 1.3 is susceptible to arbitrary file downloads because the code in downloadpdffile.php does not do any sanity checks. id: CVE-2015-1000005 info: name: WordPress Candidate Application Form = 1.3 - Local File Inclusion author: dhiyaneshDK severity: high...

7.5CVSS7.3AI score0.08833EPSS
Exploits1References5
Nuclei
Nuclei
added 14 hours ago53 views

WordPress Simple Image Manipulator < 1.0 - Local File Inclusion

WordPress Simple Image Manipulator 1.0 is vulnerable to local file inclusion in ./simple-image-manipulator/controller/download.php because no checks are made to authenticate users or sanitize input when determining file location. id: CVE-2015-1000010 info: name: WordPress Simple Image Manipulator...

7.5CVSS7.1AI score0.07038EPSS
Exploits2References4
Nuclei
Nuclei
added 14 hours ago32 views

Opsview Monitor Pro - Local File Inclusion

Opsview Monitor Pro prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch is vulnerable to unauthenticated local file inclusion and can be exploited by issuing a specially crafted HTTP GET request utilizing a simple bypass. id:...

7.5CVSS7AI score0.16109EPSS
Exploits1References5
Rows per page
Query Builder