Cisco Prime Collaboration Assurance File Viewing Vulnerability

Cisco Prime is a service-centric solution that integrates the management of wired and wireless LANs, WANs and data centers from endpoints, network devices and applications, and filters information. A security vulnerability in the Cisco Prime Collaboration Assurance WEB architecture allows remote...

F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability

+------------------------------------------------------+ + F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability + +------------------------------------------------------+ Affected Product : F5 BIG-IP Vendor Homepage : http://www.f5.com/ Version : 10.1.0 Vulnerability Category : Local vulnerabilit...

F5 BIG-IP - SOAP parser vulnerability CVE-2013-1824

The remote host is missing a security patch. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...

Microsoft Windows - CreateObjectTask TileUserBroker Privilege Escalation

Microsoft Windows - CreateObjectTask TileUserBroker Privilege Escalation Source: https://code.google.com/p/google-security-research/issues/detail?id=439 Windows: CreateObjectTask TileUserBroker Elevation of Privilege Platform: Windows 8.1 Update I don’t believe it’s available in earlier Windows...

Rockwell Automation 1766-L32 Series Remote File Inclusion Vulnerability

The Rockwell Automation 1766-L32 Series is a 1766-L32 series programmable logic controller PLC. The Rockwell Automation 1766-L32 Series fails to adequately filter user-submitted input, allowing remote attackers to exploit the vulnerability by submitting a special request to view the contents of...

NAP Turbo NAS Series Devices Music Station Directory Traversal Vulnerability

NAP Turbo NAS Series Devices is a backup software that supports real-time backup, data synchronization and scheduled backup. An input validation vulnerability exists in NAP Turbo NAS Series Devices Music Station, which could be exploited by remote attackers to submit a special request to view...

NAP Turbo NAS Series Devices File Station Directory Traversal Vulnerability

NAP Turbo NAS Series Devices is a backup software that supports real-time backup, data synchronization and scheduled backup. An input validation vulnerability exists in NAP Turbo NAS Series Devices File Station, which could be exploited by remote attackers to submit a special request to view syst...

WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download

WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download Title: Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-12 Download Site: https://wordpress.org/plugins/candidate-application-form...

WordPress WPTF Image Gallery 1.03 File Download Vulnerability

WordPress WPTF Image Gallery plugin version 1.03 suffers from an arbitrary remote file download vulnerability. Title: Remote file download vulnerability in wptf-image-gallery v1.03 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-17 Download Site: https://wordpress.org/plugins/wptf-image-galler...

WordPress WPTF Image Gallery 1.03 File Download

Title: Remote file download vulnerability in wptf-image-gallery v1.03 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-17 Download Site: https://wordpress.org/plugins/wptf-image-gallery Vendor: https://profiles.wordpress.org/sakush100/ Vendor Notified: 0000-00-00 Vendor Contact:...

WordPress Candidate Application Form 1.0 File Download

Title: Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-12 Download Site: https://wordpress.org/plugins/candidate-application-form Vendor: https://profiles.wordpress.org/flaxlandsconsulting/ Vendor Notified:...

EMC Avamar Virtual Edition and EMC Avamar Server Directory Traversal Vulnerability

EMC Avamar Virtual Edition is a fully virtualized backup and recovery solution of which EMC Avamar Server is the server-side software. A directory traversal vulnerability exists in EMC Avamar Virtual Edition and EMC Avamar Server, which allows remote attackers to exploit the vulnerability by...

wptf-image-gallery 1.0.3 - Remote File Download

Plugin is still affected and has been closed. The ./wptf-image-gallery/lib-mbox/ajaxload.php code doesn't sanitize user input or check that a user is authorized to download files. This allows an unauthenticated user to download sensitive system files: 1 PoC $ curl...

Remote file download vulnerability in wordpress plugin wp-ecommerce-shop-styling v2.5

Title: Remote file download vulnerability in wordpress plugin wp-ecommerce-shop-styling v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-05 Download Site: https://wordpress.org/plugins/wp-ecommerce-shop-styling Vendor: https://profiles.wordpress.org/haet/ Vendor Notified: 2015-07-05, fixed...

WordPress WP-SwimTeam 1.44.10777 Arbitrary File Download

Title: Remote file download vulnerability in Wordpress Plugin wp-swimteam v1.44.10777 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-02 Download Site: https://wordpress.org/plugins/wp-swimteam Vendor: Mike Walsh www.MichaelWalsh.org Vendor Notified: 2015-07-02, fixed in v1.45beta3 Vendor...

WordPress Plugin Swim Team 1.44.10777 - Arbitrary File Download

Title: Remote file download vulnerability in Wordpress Plugin wp-swimteam v1.44.10777 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-02 Download Site: https://wordpress.org/plugins/wp-swimteam Vendor: Mike Walsh www.MichaelWalsh.org Vendor Notified: 2015-07-02, fixed in v1.45beta3 Vendor...

BlackCat CMS Directory Traversal Vulnerability

BlackCat CMS is a content management system based on PHP5 and HTML5. BlackCat CMS suffers from a directory traversal vulnerability that allows remote attackers to view the contents of system files with WEB privileges by submitting a character containing a directory traversal...

WordPress WP-Ecommerce-Shop-Styling 2.5 File Download Vulnerability

WordPress WP-Ecommerce-Shop-Styling plugin version 2.5 suffers from an arbitrary file download vulnerability. Title: Remote file download vulnerability in wordpress plugin wp-ecommerce-shop-styling v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-05 Download Site:...

WordPress Plugin WP E-Commerce Shop Styling 2.5 - Arbitrary File Download

Title: Remote file download vulnerability in wordpress plugin wp-ecommerce-shop-styling v2.5 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-05 Download Site: https://wordpress.org/plugins/wp-ecommerce-shop-styling Vendor: https://profiles.wordpress.org/haet/ Vendor Notified: 2015-07-05, fixed...

WP e-Commerce Shop Styling <= 2.5 - Local File Inclusion

The code in ./wp-ecommerce-shop-styling/includes/download.php does not sanitise user input to prevent sensitive system files from being downloaded. You'll have to rename the download file via mv -- -..-..-..-..-..-..-..-..-etc-passwd passwd as the filename is set to the download filename with pat...