5286 matches found
Joomla! Component com_jr_tfb - Controller Local File Inclusion
Joomla! Component comjrtfb - Controller Local File Inclusion source: https://www.securityfocus.com/bid/48558/info The 'comjrtfb' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerabili...
Joomla! Component com_jr_tfb - 'Controller' Local File Inclusion
source: https://www.securityfocus.com/bid/48558/info The 'comjrtfb' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute...
Sitemagic CMS - SMTpl Directory Traversal
Sitemagic CMS - SMTpl Directory Traversal source: https://www.securityfocus.com/bid/48399/info Sitemagic CMS is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain arbitrary local files in the...
Sitemagic CMS - 'SMTpl' Directory Traversal
source: https://www.securityfocus.com/bid/48399/info Sitemagic CMS is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain arbitrary local files in the context of the webserver process...
PHP-Nuke 8.3 - upload.php Arbitrary File Upload (2)
PHP-Nuke 8.3 - upload.php Arbitrary File Upload 2 source: https://www.securityfocus.com/bid/48257/info Phpnuke is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code a...
PHP-Nuke 8.3 - upload.php Arbitrary File Upload (1)
PHP-Nuke 8.3 - upload.php Arbitrary File Upload 1 source: https://www.securityfocus.com/bid/48257/info Phpnuke is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code a...
PHP-Nuke 8.3 - 'upload.php' Arbitrary File Upload (2)
source: https://www.securityfocus.com/bid/48257/info Phpnuke is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code and run it in the context of the webserver process...
PHP-Nuke 8.3 - 'upload.php' Arbitrary File Upload (1)
source: https://www.securityfocus.com/bid/48257/info Phpnuke is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code and run it in the context of the webserver process...
Xataface 1.x - action Local File Inclusion
Xataface 1.x - action Local File Inclusion source: https://www.securityfocus.com/bid/48126/info Xataface is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information...
Xataface 1.x - 'action' Local File Inclusion
source: https://www.securityfocus.com/bid/48126/info Xataface is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or to execute arbitrary local scripts in t...
PopScript - index.php Multiple Input Validation Vulnerabilities
PopScript - index.php Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/48113/info PopScript is prone to a remote file-include vulnerability, an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize...
AIDeX Mini-Webserver 1.4 Cross Site Scripting
Exploit Title: AIDeX Mini-Webserver 1.4 integrated Chat Javascript Injection Vulnerability Autor: wingthor Author-Email:[email protected] Author-Website german:http://www.wingthor.de Date: 30.12.10 Tool: AIDeX Mini-Webserver Version: 1.4...
MidiCMS Website Builder - Local File Inclusion Arbitrary File Upload
MidiCMS Website Builder - Local File Inclusion Arbitrary File Upload source: https://www.securityfocus.com/bid/47970/info MidiCMS Website Builder is prone to a local file-include vulnerability and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary fil...
MidiCMS Website Builder - Local File Inclusion / Arbitrary File Upload
source: https://www.securityfocus.com/bid/47970/info MidiCMS Website Builder is prone to a local file-include vulnerability and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the webserver, execute arbitrary local files within the conte...
Andys PHP KnowledgeBase 0.95.4 - step5.php PHP Remote Code Execution
Andys PHP KnowledgeBase 0.95.4 - step5.php PHP Remote Code Execution source: https://www.securityfocus.com/bid/47918/info Andy's PHP Knowledgebase is prone to a vulnerability that lets remote attackers execute arbitrary code because the application fails to sanitize user-supplied input. Attackers...
eFront 3.6.9 - scripts.php Local File Inclusion
eFront 3.6.9 - scripts.php Local File Inclusion source: https://www.securityfocus.com/bid/47870/info eFront is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...
Exponent CMS 2.0.0 Beta 1.1 - Local File Inclusion Arbitrary File Upload
Exponent CMS 2.0.0 Beta 1.1 - Local File Inclusion Arbitrary File Upload source: https://www.securityfocus.com/bid/47757/info Exponent CMS is prone to a local file-include vulnerability and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto...
phpWebSite 1.7.1 - 'upload.php' Arbitrary File Upload
source: https://www.securityfocus.com/bid/47759/info phpWebSite is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately sanitize user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code an...
Exponent CMS 2.0.0 Beta 1.1 - Local File Inclusion / Arbitrary File Upload
source: https://www.securityfocus.com/bid/47757/info Exponent CMS is prone to a local file-include vulnerability and an arbitrary-file-upload vulnerability. An attacker can exploit these issues to upload arbitrary files onto the webserver, execute arbitrary local files within the context of the...
FestOS 2.3c - upload.php Arbitrary File Upload
FestOS 2.3c - upload.php Arbitrary File Upload source: https://www.securityfocus.com/bid/47751/info FestOS is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code and r...