CVE-2018-8766

joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary File Upload issue in manager/editor/upload.php, related to manager/adminvod.php?action=add...

CVE-2018-6944

core/lib/upload/um-file-upload.php in the UltimateMember plugin 2.0 for WordPress has a cross-site scripting vulnerability because it fails to properly sanitize user input passed to the $temp variable...

CVE-2018-6943

The CVE-2018-6943 entry concerns the WordPress UltimateMember plugin (v2.0) where core/lib/upload/um-image-upload.php is vulnerable to cross-site scripting due to improper sanitization of input assigned to the $temp variable. This XSS condition is documented across multiple sources (NVD listing a...

CVE-2018-6943

core/lib/upload/um-image-upload.php in the UltimateMember plugin 2.0 for WordPress has a cross-site scripting vulnerability because it fails to properly sanitize user input passed to the $temp variable...

Path traversal

Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zbsystem/function/lib/upload.php...

CVE-2018-6846

Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zbsystem/function/lib/upload.php...

CVE-2017-14346

upload.php in tianchoy/blog through 2017-09-12 allows unrestricted file upload and PHP code execution by using the image/jpeg, image/pjpeg, image/png, or image/gif content type for a .php file...

Arbitrary file upload vulnerability in EduWork uplaod.php page

EduWork is an almost open source training institution management system, focusing on solving the daily affairs of training institutions and the entire management. An arbitrary file upload vulnerability exists in the EduWork uplaod.php page. Attackers can use this vulnerability to obtain...

File Upload Vulnerability in FinecmsV5.0.8

FineCMS is a content management system based on PHP+MySql. A file upload vulnerability exists in FinecmsV5.0.8. The vulnerability exists in the file finecms\dayrui\libraries\Upload.php. An attacker can exploit the vulnerability to upload arbitrary files...

Design/Logic Flaw

upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbitrary directories via vectors related to the targetDir variable...

CVE-2015-5682

The CVE concerns the WordPress Powerplay Gallery plugin, version 3.3, where upload.php allows remote attackers to create arbitrary directories through vectors related to the targetDir parameter. This is a remote, unauthenticated vulnerability that enables directory creation, potentially aiding fu...

VK.com: SSRF (open) - via GET request

Потенциальный DoS сервиса share через SSRF. Продемонстрирована возможность проведения атаки через приложения ВК. Сервис upload.php / parseshare игнорировал идентифицирующие ключи hash и rhash, а также не производил проверку Content- по целевому url. Большой таймаут серверного запроса позволял...

VK.com: XSS в upload.php

Добрый вечер! Раскрутил интересную xss на upload.php. Демо тут или тут. Как все было? Увидел интересный экшн upload.php?act=transport, который служит для загрузки нарисованного граффити в документы. Глаз зацепился за вызов функции eval в строке 25. Обратите внимание на параметр callback, значение...

Chamilo LMS Cross Site Scripting

Document Title: =============== Chamilo LMS - Persistent Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id= Video: https://www.youtube.com/watch?v=gNZsQjmtiGI Release Date: ============= 2016-02-17 Vulnerability Laborator...

WordPress Theme GeoPlaces3 - Arbitrary File Upload

Description : Wordpress Themes GeoPlaces3 - Arbitrary File Upload vulnerbility Google Dork: inurl:/wp-content/themes/GeoPlaces3/ Date: 23 August 2015 Vendor Homepage: http://templatic.com/app-themes/geo-places-city-directory-wordpress-theme Tested on: Win 7 & Win 8.1 Author: MdnNewbie | Gantenger...

CVE-2015-5599

CVE-2015-5599 affects the WordPress plugin Powerplay Gallery (plugin version 3.3 and earlier) with multiple SQL injection vulnerabilities in upload.php. Attackers could remotely execute arbitrary SQL commands via the albumid or name parameters, as described by multiple sources (NVD entry and asso...

WordPress dzs-zoomsounds Plugins <= 2.0 - Remote File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ Author: bl4ck-dz Date: 28/05/2015 Infected File: upload.php Category: webapps Google...

WordPress Plugin dzs-zoomsounds 2.0 - Arbitrary File Upload

Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ Author: bl4ck-dz Date: 28/05/2015 Infected File: upload.php Category: webapps Google dork:inurl:/wp-content/plugins/dzs-zoomsounds/ Tested on : Linux | Windows...

WordPress Amerisale Re Plugin -Reflected XSS

This plugin is prone to a cross site scripting vulnerability in netriesdetail/upload.php edit parameter. Solution Update the plugin...

WordPress Amerisale Re Plugin -Reflected XSS

This plugin is prone to a cross site scripting vulnerability in netriesdetail/upload.php edit parameter. Solution Update the plugin...