92 matches found
PHP Advanced Transfer Manager <= 1.30 Multiple Vulnerabilities
The version of PHP Advanced Transfer Manager on the remote host suffers from multiple information disclosure and cross-site scripting flaws. For example, by calling a text or HTML viewer directly, an unauthenticated attacker can view arbitrary files, provided PHP's 'registerglobals' setting is...
CVE-2005-2998
PHP Advanced Transfer Manager 1.30 has a default password for the administrator user, which allows remote attackers to upload and execute arbitrary PHP files...
CVE-2005-2999
PHP Advanced Transfer Manager 1.30 allows remote attackers to obtain sensitive PHP configuration information via a direct request to test.php...
CVE-2005-2997
Multiple directory traversal vulnerabilities in PHP Advanced Transfer Manager 1.30 allow remote attackers to read arbitrary files via ".." sequences in 1 the currentdir parameter to txt.php, or the currentdir parameter to 2 htm.php or 3 html.php...
CVE-2005-3000
Multiple cross-site scripting XSS vulnerabilities in viewers/txt.php in PHP Advanced Transfer Manager 1.30 allow remote attackers to inject arbitrary web script or HTML via the 1 font, 2 normalfontcolor, or 3 mess31 parameters...
CVE-2005-2998
CVE-2005-2998 affects PHP Advanced Transfer Manager 1.30. The vulnerability involves a default administrator password that allows remote attackers to upload and execute arbitrary PHP files. Impact is described overall as partial confidentiality, integrity, and availability. No explicit remediatio...
CVE-2005-2998
PHP Advanced Transfer Manager 1.30 has a default password for the administrator user, which allows remote attackers to upload and execute arbitrary PHP files...
CVE-2005-2997
Multiple directory traversal vulnerabilities in PHP Advanced Transfer Manager 1.30 allow remote attackers to read arbitrary files via ".." sequences in 1 the currentdir parameter to txt.php, or the currentdir parameter to 2 htm.php or 3 html.php...
CVE-2005-2997
CVE-2005-2997 affects PHP Advanced Transfer Manager 1.30. The vulnerability is a directory traversal flaw allowing remote attackers to read arbitrary files via .. sequences in the following parameters: currentdir to txt.php, current_dir to htm.php, or current_dir to html.php. This results in pote...
CVE-2005-2999
Technical details about CVE-2005-2999 are not publicly provided in the supplied documents. Monitor for updates from official advisories for affected products, impact, and remediation.
CVE-2005-3000
CVE-2005-3000 affects PHP Advanced Transfer Manager 1.30, with XSS vulnerabilities in viewers/txt.php. The vulnerability allows remote attackers to inject arbitrary script/HTML via the font, normalfontcolor, or mess[31] parameters, potentially affecting users who load the affected page. Root caus...
PHP Advanced Transfer Manager 1.30 - Multiple Directory Traversal Vulnerabilities
PHP Advanced Transfer Manager 1.30 - Multiple Directory Traversal Vulnerabilities source: https://www.securityfocus.com/bid/14883/info PHP Advanced Transfer Manager is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize...
PHP Advanced Transfer Manager <= 1.30 Multiple Vulnerabilities
Binary data 3234.prm...
PHP Advanced Transfer Manager 1.30 - Multiple Cross-Site Scripting Vulnerabilities
PHP Advanced Transfer Manager 1.30 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14887/info PHP Advanced Transfer Manager is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitiz...
PHP Advanced Transfer Manager 1.30 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/14887/info PHP Advanced Transfer Manager is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitra...
PHP Advanced Transfer Manager 1.30 - Multiple Directory Traversal Vulnerabilities
source: https://www.securityfocus.com/bid/14883/info PHP Advanced Transfer Manager is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Exploitation of any of these vulnerabilities could lead to a...
phpAdvanced.txt
oooo...oooo.oooooooo8.ooooooooooo .8888o..88.888........88..888..88 .88.888o88..888oooooo.....888 .88...8888.........888....888 o88o....88.o88oooo888....o888o Network security team nst.void.ru Title: PHP Advanced Transfer Manager v1.21 Bug found by: nst Date: 06.05.2005 Owner: phpatm.free.fr...
PHP Advanced Transfer Manager < 1.22 File Upload Arbitrary Command Execution
Binary data 2933.prm...
PHP Advanced Transfer Manager 1.21 - Arbitrary File Inclusion
PHP Advanced Transfer Manager 1.21 - Arbitrary File Inclusion source: https://www.securityfocus.com/bid/13691/info PHP Advanced Transfer Manager is prone to an arbitrary file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An...
PHP Advanced Transfer Manager 1.21 - Arbitrary File Inclusion
source: https://www.securityfocus.com/bid/13691/info PHP Advanced Transfer Manager is prone to an arbitrary file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side...