475 matches found
WebGUI 6.x - Arbitrary Command Execution
source: https://www.securityfocus.com/bid/15083/info WebGUI is prone to an arbitrary command execution vulnerability. This is due to insufficient sanitization of user-supplied data. This issue can facilitate unauthorized remote access...
WebGUI 6.x - Arbitrary Command Execution
WebGUI 6.x - Arbitrary Command Execution source: https://www.securityfocus.com/bid/15083/info WebGUI is prone to an arbitrary command execution vulnerability. This is due to insufficient sanitization of user-supplied data. This issue can facilitate unauthorized remote access...
CVE-2005-2837
Multiple eval injection vulnerabilities in PlainBlack Software WebGUI before 6.7.3 allow remote attackers to execute arbitrary Perl code via 1 Help.pm, 2 International.pm, or 3 WebGUI.pm...
CVE-2005-2837
Multiple eval injection vulnerabilities in PlainBlack Software WebGUI before 6.7.3 allow remote attackers to execute arbitrary Perl code via 1 Help.pm, 2 International.pm, or 3 WebGUI.pm...
CVE-2005-2837
CVE-2005-2837 affects Plain Black Software WebGUI prior to 6.7.3. Multiple eval injection flaws in the modules Help.pm, International.pm, and WebGUI.pm allow remote attackers to execute arbitrary Perl code. This is a remote code execution risk on WebGUI installations exposed to an attacker; explo...
PT-2005-3703 · Plain Black · Webgui
Name of the Vulnerable Software and Affected Versions: WebGUI versions prior to 6.7.3 Description: The issue allows remote attackers to execute arbitrary Perl code via multiple eval injection vulnerabilities in the following modules: 1 Help.pm, 2 International.pm, or 3 WebGUI.pm. Recommendations:...
WebGUI < 6.7.3 Multiple Command Execution Vulnerabilities
The remote host is running WebGUI, a content management system from Plain Black Software. According to its banner, the installed version of WebGUI on the remote host fails to sanitize user-supplied input to various sources before using it to run commands. By leveraging these flaws, an attacker ma...
WebGUI Perl Code Execution Vulnerabilities
Secunia Advisory: SA16682 Release Date: 2005-09-02 Critical: Highly critical Impact: System access Where: From remote Solution Status: Vendor Patch Software: WebGUI 6.x Select a product and view a complete list of all Patched/Unpatched Secunia advisories affecting it. Description: Some...
WebGUI < 6.2.9 Unspecified Vulnerability
Binary data 2414.prm...
WebGUI user profile Unspecified Vulnerability
The remote host is running WebGUI, a content management system from Plain Black Software. According to its banner, the version of this software on the remote is earlier than 6.2.9 and thus affected by an undisclosed remote vulnerability related to the 'user profile' feature. %NASLMINLEVEL 70300 C...
WebGUI < 5.2.4 Crafted HTTP Request DoS
Binary data 1596.prm...
Nokia IPSO Voyager WebGUI readfile.tcl file Parameter Arbitrary File Access
Binary data 1558.prm...
WebGUI < 7.5.13 RSS Feed Authentication Bypass
Binary data 4559.prm...
Nokia IPSO Voyager WebGUI readfile.tcl file Parameter Arbitrary File Access
The remote host includes a CGI /cgi-bin/readfile.tcl which allows anyone to read arbitrary files on the remote host with the privileges of the HTTP daemon typically 'nobody'. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref: From: Jonas Eriksson mailto:[email protected] Date: 23/04/2003 To:...
Nokia IPSO Vulnerability
There is a remote security vulnerability in the Nokia IPSO operating system. Anyone with access to the webgui Voyager on the Nokia IP-box can read any file on the system. For example, login as the user 'monitor' disabled by default and use the readfile.tcl to read any file:...