1092 matches found
UBUNTU-CVE-2015-1431
Cross-site scripting XSS vulnerability in includes/startup.php in phpBB before 3.0.13 allows remote attackers to inject arbitrary web script or HTML via vectors related to "Relative Path Overwrite."...
Cross site scripting
Cross-site scripting XSS vulnerability in includes/startup.php in phpBB before 3.0.13 allows remote attackers to inject arbitrary web script or HTML via vectors related to "Relative Path Overwrite."...
Xynph FTP Server 1.0 Relative Path Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6587/info A problem with the handling of input has been reported in Xynph FTP Server. Under some circumstances, it may be possible for a remote user to escape the FTP root directory using relative path notation. This coul...
clearswift mimesweeper for web 4.0/5.0 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10918/info Clearswift MIMEsweeper For Web is reported prone to a directory traversal vulnerability due to insufficient sanitization of user-supplied data. To carry out an attack an attacker may specify a relative path to ...
AtheOS 0.3.7 Change Root Relative Path Directory Escaping Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4051/info AtheOS is a freely available, open source operating system. It is distributed under the GPL, and maintained by the AtheOS project. It is possible to escape change rooted directories on AtheOS. Due to insufficien...
Muhammad M. Saggaf Seyon 2.14 b Relative Path Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/780/info Seyon uses relative pathnames to spawn two other programs which it requires. It is possible to exploit this vulnerability to obtain the priviliges which seyon runs with. It is installed by default setgid dialer o...
RobTex Viking Server 1.0.7 Relative Path Webroot Escaping Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2643/info The Viking Server is a freely available software package maintained and distributed by Robtex. The Viking Server provides multiple protocol service on Windows 95, 98, and NT systems. A problem in the software...
Xangati software release contains relative path traversal and command injection vulnerabilities
Overview Xangati's software release contains relative path traversal CWE-23 and command injection CWE-78 vulnerabilities. Description Xangati's software release contains relative path traversal CWE-23 and command injection CWE-78 vulnerabilities.CWE-23: Relative Path Traversal -CVE-2014-0358 The...
x2goserver privilege escalation
Relative path is used to execute application...
Siemens WinCC 7.0 SP3 Multiple Vulnerabilities
Overview This advisory provides mitigation details for vulnerabilities that impact the Siemens SIMATIC WinCC. Positive Technologies and Siemens ProductCERT have identified multiple vulnerabilities in the Siemens SIMATIC WinCC, which is used to configure SIMATIC operator devices. Siemens has...
PT-2013-79: Relative path traversal in SIMATIC WinCC Open Architecture
The specialists of the Positive Research center have detected a Relative path traversal vulnerability in SIMATIC WinCC Open Architecture. The SIMATIC WinCC OA integrated Web server at Port 4999/TCP might allow attackers to traverse through the server’s file system based on the application’s Windo...
HDWiki Xss+CSRF GetShell 0day
简要描述: 啊,这个不知道有没有奖金. Xss + CSRF = Getshell 详细说明: 主要两处问题: 一、前台创建词条时插入内容只是editor的js对敏感code做了客户端过滤,传入服务器后服务器端过滤不够严格,构成Xss。 二、后台对文件编辑时没有限制相对路径的使用,文件可以直接使用相对路径编辑在列表里可以看到默认是绝对路径的,并且在编辑文件位置没有进行验证,构成CSRF。 漏洞证明: 具体利用Getshell: 普通用户前台创建词条: 发布,截包修改: 这里插入的是一个写好的JS,编辑install/index.php内容为一句话木马。 内容如下: function aj...
perl Module::Signature privilege escalation
Relative path is used to execute external application...
Airlive IP Cameras - Multiple Vulnerabilities
Exploit for hardware platform in category web applications 1.Advisory Information Title: Airlive Multiple Vulnerabilities Date Published: 12/06/2013 Date of last updated: 12/06/2013 2.Vulnerability Description Multiple vulnerabilities have been found in this devices: -CVE-2013-3540. Cross Site...
Airlive CSRF / Traversal / Disclosure / Denial Of Service
=========================================================================== AIRLIVE ==================================================================== =========================================================================== 1.Advisory Information Title: Airlive Multiple Vulnerabilities Date...
Directory traversal
Directory traversal vulnerability in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allows remote authenticated users to upload files, and consequently execute arbitrary code, via a relative path...
Readily remember arbitrary file upload flaws and fixes-vulnerability warning-the black bar safety net
Heard readily lend good make, registration number ready to buy a membership first try Pass avatar when the first-mover can now select all of the files, selected a qq. exe, point to upload, the bottom right corner traffic moving, Tip: incorrect format, open firebug, and then upload the returned fi...
CentOS Update for xmlsec1 CESA-2011:0486 centos5 x86_64
Check for the Version of xmlsec1 OpenVAS Vulnerability Test CentOS Update for xmlsec1 CESA-2011:0486 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
[CVE-2012-1089] Apache Wicket serving of hidden files vulnerability
Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache Wicket 1.4.x and 1.5.x Description: It is possible to view the content of any file of a web application by using an Url to a Wicket resource which resolves to a 'null' package. With such a Url the attacker can...
CentOS Update for xmlsec1 CESA-2011:0486 centos4 i386
Check for the Version of xmlsec1 OpenVAS Vulnerability Test CentOS Update for xmlsec1 CESA-2011:0486 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...