Arbitrary File Deletion Vulnerability in WeCenter Learning Free Edition

WeCenter is an open source knowledge-based social Q&A community program. An arbitrary file deletion vulnerability exists in the free version of WeCenter Learning, which can be exploited by an attacker to delete arbitrary files from the server...

Arbitrary File Deletion Vulnerability in Five Fingers CMS

Five Fingers CMS is an open source content management system. Five Fingers CMS has an arbitrary file deletion vulnerability that can be exploited by an attacker to delete arbitrary server files...

Arbitrary File Deletion Vulnerability in Advantech WebAccess/SCADA

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, Taiwan, China. An arbitrary file deletion vulnerability exists in Advantech WebAccess/SCADA, which can be exploited by an attacker to delete arbitrary files from the server...

Advantech WebAccess/SCADA suffers from arbitrary file deletion vulnerability (CNVD-2020-29403)

Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, Taiwan, China. An arbitrary file deletion vulnerability exists in Advantech WebAccess/SCADA, which can be exploited by an attacker to delete arbitrary files from the server...

Flux-Keylogger - Modern Javascript Keylogger With Web Panel

Modern javascript keylogger with web panel Web panel: Logging: Keylogger Cookies Location Remote IP User-Agents Installation server files: Upload files from server directory to you server Change default username, password in flux.php Go to http://you.host/flux.php Click build Now inject script ta...

Arbitrary File Deletion Vulnerability in WMCMS

WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS arbitrary file deletion vulnerability, an attacker can exploit the vulnerability to delete any file under the server...

Arbitrary File Download Vulnerability in WMCMS

WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS has an arbitrary file download vulnerability that can be exploited by attackers to download sensitive server files...

OurPHP Omnicom website builder system background exists arbitrary file deletion vulnerability

OurPHP Aopia website building system is a enterprise + e-commerce marketing website building system. OurPHP website builder system has an arbitrary file deletion vulnerability in the background, which can be exploited by attackers to delete any file under the server...

Arbitrary File Deletion Vulnerability in the Backend of Feifei Movie Navigation System (CNVD-2020-25318)

Fei Fei Movie Navigation System is developed by PHP+Mysql technology, which can run on windows and Linux system platform. Feifei Movie and TV navigation system background there are arbitrary file deletion vulnerability, an attacker can use the vulnerability to delete any file server...

CVE-2020-11596

A Directory Traversal issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make HTTP GET requests to a certain URL and obtain information about what files and directories reside on the server...

CVE-2020-11596

A Directory Traversal issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make HTTP GET requests to a certain URL and obtain information about what files and directories reside on the server...

Worry-free PHP enterprise website management system suffers from arbitrary file deletion vulnerability (CNVD-2020-25574)

Hassle-free PHP enterprise website management system is a website management system developed using PHP+MYSQL technology and MVC model. Worry-Free PHP Enterprise Website Management System has an arbitrary file deletion vulnerability that can be exploited by an attacker to delete any file on the...

Arbitrary File Deletion Vulnerability in Gila CMS

Gila CMS is an open source content management system. Gila CMS suffers from an arbitrary file deletion vulnerability that can be exploited by an attacker to delete arbitrary files from the server...

Arbitrary File Download Vulnerability in TrueCMS

TrueCMS is a website management system. TrueCMS suffers from an arbitrary file download vulnerability, which can be exploited by an attacker to download arbitrary files from the server and disclose sensitive information...

OurPHP has an arbitrary file deletion vulnerability

OurPHP is an enterprise e-commerce website builder. OurPHP has an arbitrary file deletion vulnerability, which can be exploited by attackers to delete arbitrary files on the server...

Joomla com_fabrik 3.9.11 - Directory Traversal Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! comfabrik 3.9.11 - Directory Traversal Google Dork: inurl:"index.php?option=comfabrik" Exploit Author: qw3rTyTy Vendor Homepage: https://fabrikar.com/ Software Link: https://fabrikar.com/downloads Version: 3.9 Tested on:...

Arbitrary File Read Vulnerability in Five Fingers CMS

Five fingers CMS is a high-performance open source content management system , support for LNAMP architecture , suitable for portals , corporate Web site , mobile site , microblogging promotion. Five Fingers CMS arbitrary file reading vulnerability , an attacker can exploit the vulnerability to...

Chadha PHPKB path traversal vulnerability (CNVD-2020-18322)

Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A path traversal vulnerability exists in admin/assetmanager/assetmanager.php in Chadha PHPKB Standard Multi-Language 9. An attacker...

CVE-2020-10459

Path Traversal in admin/assetmanager/assetmanager.php vulnerable function saved in admin/assetmanager/functions.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to list the files that are stored on the webserver using a dot-dot-slash sequence ../ via the POST parameter inpCurrFolder...

CVE-2020-9044

XXE vulnerability exists in the Metasys family of product Web Services which has the potential to facilitate DoS attacks or harvesting of ASCII server files. This affects Johnson Controls' Metasys Application and Data Server ADS, ADS-Lite versions 10.1 and prior; Metasys Extended Application and...