21 matches found
CVE-2019-16132
An issue was discovered in OKLite v1.2.25. framework/admin/tplcontrol.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring...
EUVD-2019-6969
Malware in sbrugna...
CVE-2019-16131
framework/admin/moduleccontrol.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/...
File Upload Vulnerability in OKLite
OKLite is an enterprise website system, the main target group is the display enterprise website users, so that the traditional small business quickly deploy the website. A file upload vulnerability exists in OKLite, which can be exploited by attackers to upload a webshell and gain server privileg...
File upload vulnerability exists in OKLite (CNVD-2021-19721)
OKLite is an enterprise website system, the main target group is the display enterprise website users, so that the traditional small business quickly deploy the website. OKLite suffers from a file upload vulnerability that can be exploited by an attacker to gain control of the server...
OKLite has a flawed logic vulnerability
OKLite is a minimalist enterprise website system, the main target group is the display enterprise website users, so that the traditional small business quickly deploy the website. OKLite suffers from a logic flaw vulnerability that can be exploited by attackers to obtain sensitive information...
OKLite suffers from a logic flaw vulnerability (CNVD-2020-71655)
OKLite is a minimalist enterprise website system, the main target group is the display enterprise website users, so that the traditional small business quickly deploy the website. OKLite suffers from a logic flaw vulnerability that can be exploited by attackers to compromise the integrity of the...
File Upload Vulnerability in OKLite
KLite is a minimalist enterprise station system, the main target group is the display of enterprise website users, so that the traditional small business quickly deployed website. OKLite has a file upload vulnerability that can be exploited by attackers to gain server privileges...
CVE-2019-16131
framework/admin/moduleccontrol.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/...
CVE-2019-16131
framework/admin/moduleccontrol.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/...
CVE-2019-16132
An issue was discovered in OKLite v1.2.25. framework/admin/tplcontrol.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring...
CVE-2019-16132
An issue was discovered in OKLite v1.2.25. framework/admin/tplcontrol.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring...
Design/Logic Flaw
framework/admin/moduleccontrol.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/...
CVE-2019-16131
framework/admin/moduleccontrol.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/...
CVE-2019-16131
CVE-2019-16131 affects OKLite v1.2.25 in the component framework/admin/modulec_control.php, which exposes an Arbitrary File Upload vulnerability. A PHP file contained in a ZIP archive can be written to /data/cache/, enabling potential remote code execution or defacement depending on the environme...
CVE-2019-16132
An issue was discovered in OKLite v1.2.25. framework/admin/tplcontrol.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring...
CVE-2019-16132
CVE-2019-16132 affects OKLite v1.2.25. The issue is in framework/admin/tpl_control.php, where a title directory-traversal pathname combined with a crafted substring allows remote attackers to delete arbitrary files. The Red Hat advisory corroborates the same description. The provided documents do...
File Upload Vulnerability in OKLite 1.2.25
OKLite is a business building system. A file upload vulnerability exists in OKLite 1.2.25, which can be exploited by attackers to gain control of a web server...
OKLite 1.2.25 Arbitrary File Deletion Vulnerability
OKLite is a business building system. OKLite 1.2.25 arbitrary file deletion vulnerability, an attacker can modify the title parameter to exploit the vulnerability to delete arbitrary files...
File Upload Vulnerability in OKLite Backend
OKLite is a set of minimalist enterprise station system, the main target group is the display of enterprise website users, so that traditional small businesses quickly deploy the site, strengthen their brand awareness, to achieve the publicity of the company's image. There is a file upload...