279 matches found
Unrestricted file upload
Unrestricted file upload vulnerability in upload.php in YourPlace 1.0.2 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file...
CVE-2009-1090
Directory traversal vulnerability in upload.php in Rapidleech rev.36 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the uploaded parameter...
CVE-2009-1089
CVE-2009-1089 describes an absolute path traversal in Rapidleech (rev.36 and earlier) where a base64-encoded absolute path supplied in the filename parameter to upload.php allows remote attackers to read arbitrary files. The CVE is documented with a Medium (5.0) severity per NVD; however, the pro...
CVE-2009-1091
CVE-2009-1091 : Cross-site scripting (XSS) vulnerability in upload.php of Rapidleech rev.36 and earlier. Remote attackers can inject arbitrary web script or HTML via the uploaded parameter. Affected: Rapidleech upload.php (rev.36 and earlier). Impact: partial integrity; no confidentiality or avai...
WikkiTikkiTavi 'upload.php'任意文件上传漏洞
BUGTRAQ ID: 33647 CNCAN ID:CNCAN-2009020702 WikkiTikkiTavi是一款Wiki引擎。 WikkiTikkiTavi 'upload.php'脚本存在漏洞,远程攻击者可以利用漏洞上传任意PHP文件。 攻击者通过上传恶意PHP文件,可导致以WEB权限执行任意命令。 WikkiTikkiTavi 1.11 厂商解决方案 目前供应商没有提供补丁信息: http://tavi.sourceforge.net/...
Directory traversal
Directory traversal vulnerability in upload.php in Phlatline's Personal Information Manager pPIM 1.0 allows remote attackers to delete arbitrary files via directory traversal sequences in the file parameter within a delfile action...
CVE-2008-4425
Directory traversal vulnerability in upload.php in Phlatline's Personal Information Manager pPIM 1.0 allows remote attackers to delete arbitrary files via directory traversal sequences in the file parameter within a delfile action...
CVE-2008-4428
CVE-2008-4428 affects Phlatline’s Personal Information Manager (pPIM) 1.0 and earlier. Unrestricted file upload in upload.php allows remote attackers to upload a .php file and execute it by requesting the file in the top‑level directory, enabling remote code execution (CVSSv2 base score 10.0, HIG...
Unfixed XSS vulnerability at www.emascc.net
Security researcher pSyChOmOnkee, has submitted on 17/09/2008 a cross-site-scripting XSS vulnerability affecting www.emascc.net, which at the time of submission ranked 14736305 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/10/2008. It is...
Ppim <= 1.0 (Arbitrary File Delete/XSS) Multiple Vulnerabilities
No description provided by source. Author : BeyazKurt Contact : [email protected] Script : Ppim v1.0 Bu ne bicim script adidir amk :D Download : http://scripts.ringsworld.com/organizers/ppim.zip D0rk : inurl:events.php?listallevents File Delete Vulnerability: upload.php...
pPIM 1.0 - Arbitrary File Delete Cross-Site Scripting
pPIM 1.0 - Arbitrary File Delete Cross-Site Scripting Author : BeyazKurt Contact : [email protected] Script : Ppim v1.0 Bu ne bicim script adidir amk :D Download : http://scripts.ringsworld.com/organizers/ppim.zip D0rk : inurl:events.php?listallevents File Delete Vulnerability: upload.php...
pPIM 1.0 - Arbitrary File Delete / Cross-Site Scripting
Author : BeyazKurt Contact : [email protected] Script : Ppim v1.0 Bu ne bicim script adidir amk :D Download : http://scripts.ringsworld.com/organizers/ppim.zip D0rk : inurl:events.php?listallevents File Delete Vulnerability: upload.php...
pagemanagercms-upload.txt
================================================================ Page Manager CMS Remote Arbitrary File Upload Vulnerability ================================================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
SyntaxCMS 'upload.php'任意文件上传漏洞
BUGTRAQ ID: 29422 CNCAN ID:CNCAN-200805304 SyntaxCMS是一款基于PHP的内容管理程序。 SyntaxCMS不正确处理用户提交的文件,远程攻击者可以利用漏洞上传任意文件,并以WEB权限执行。 问题存在于'/public/fckeditor/editor/filemanager/upload/php/upload.php'脚本中,默认的脚本配置可导致恶意攻击者上传包含PHP代码的任意文件,并以WEB权限执行。 SyntaxCMS 1.3 目前没有详细解决方案提供: http://www.syntaxcms.org/ ?php /...
La-Nai CMS <= 1.2.16 (fckeditor) Arbitrary File Upload Exploit
No description provided by source. ?php / -------------------------------------------------------------- La-Nai CMS = 1.2.16 fckeditor Arbitrary File Upload Exploit -------------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....:...
Sql injection
SQL injection vulnerability in upload.php in Coppermine Photo Gallery CPG 1.4.16 and earlier allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server that is used for an upload...
Coppermine Photo Gallery upload.php文件SQL注入漏洞
BUGTRAQ ID: 28766 Coppermine是用PHP编写的多用途集成web图形库脚本。 Coppermine的upload.php文件处理用户请求数据时存在输入验证漏洞,远程攻击者可能利用此漏洞执行SQL注入攻击。 在执行URI/URL上传时Coppermine的upload.php文件没有正确地过滤远程HTTP服务器的MIME媒体类型输入,这允许远程攻击者通过操控SQL查询请求执行SQL注入攻击。 Coppermine Photo Gallery 1.4.16 临时解决方法: 在upload.php文件中找到以下行: else // We will try to get...
CVE-2008-1273
CVE-2008-1273 concerns multiple XSS vulnerabilities in imageVue 1.7. The affected functionality is in the upload directory, with vulnerable entry points at popup.php, test/dir2.php, admin/upload.php, and dirxml.php. The underlying issue is that the path parameter is not properly sanitized, enabli...
Mini File Host 1.2.1 (upload.php language) Local File Inclusion Exploit
No description provided by source. !/usr/bin/perl Name: Mini File Host 1.2.1 "Security Fixed release" and earlier Vulnerability type: Local File Inclusion through POST requests pages/upload.php Authors: Scary-Boys: original GET-vulnerability, 2008-01-17 shinmai: POST-request vulnerability in late...
Mini File Host 1.2 (upload.php language) LFI Vulnerability
No description provided by source. Mini File Host = 1.2 Local File Inclusion Vulnerability AUTHOR : Scary-Boys HOME : http://scary-boys.com Download : http://galaxyscripts.com/forum/downloads.php?do=file&id=1 DorKs : "Powered By Mini File Host V1.2" EXPLOIT :...