MinaliC Webserver Denial of Service Vulnerability

MinaliC Webserver is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Exponent CMS Multiple Input Validation Vulnerabilities

Exponent CMS is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, information-disclosure, arbitrary-file-upload, arbitrary-file-modify, and cross-site-scripting vulnerabilities...

LittlePhpGallery 'gallery.php' Local File Include Vulnerability

LittlePhpGallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This ma...

Fedora Update for mantis FEDORA-2010-15061

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2010-15061 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

LittlePhpGallery <= 1.0.2 LFI Vulnerability

LittlePhpGallery is prone to a local file include LFI vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Awstats Configuration File Remote Arbitrary Command Execution Vulnerability

Awstats is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user- supplied input. An attacker can exploit this vulnerability to execute arbitrary shell commands in the context of the webserver process. This may help...

Awstats < 7.0 Configuration File Remote Arbitrary Command Execution Vulnerability

Awstats is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

AWStats 6.x - Apache Tomcat Configuration File Arbitrary Command Execution

AWStats 6.x - Apache Tomcat Configuration File Arbitrary Command Execution source: https://www.securityfocus.com/bid/45123/info Awstats is prone to an arbitrary command-execution vulnerability. This issue occurs when Awstats is used along with Apache Tomcat in Microsoft Windows. An attacker can...

Joomla Component 'com_jimtawl' Local File Include Vulnerability

The 'comjimtawl' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the...

Joomla Component 'com_img' Local File Include Vulnerability

The 'comimg' component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver...

Joomla Component 'com_jimtawl' <= 1.0.2 LFI Vulnerability - Active Check

The SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; if description scriptoid"1.3.6.1.4.1.25623.1.0.100919";...

CakePHP Cache Corruption Code Execution

CakePHP is a popular PHP framework for building web applications. The Security component of CakePHP versions 1.3.5 and earlier and 1.2.8 and earlier is vulnerable to an unserialize attack which could be abused to allow unauthenticated attackers to execute arbitrary code with the permissions of th...

FreeNAS Remote Shell Command Execution Vulnerability

FreeNAS is prone to a shell-command-execution vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit the remote shell-command-execution issue to execute arbitrary shell commands in the context of the webserver process. FreeNAS versions prior ...

Vtiger CRM <= 5.2.0 Multiple Vulnerabilities - Active Check

Vtiger CRM is prone to an arbitrary file upload vulnerability, multiple local file include LFI vulnerabilities, and multiple cross-site scripting XSS vulnerabilities because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text...

WeBid 0.85P1 - Multiple Input Validation Vulnerabilities

WeBid 0.85P1 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/44765/info WeBid is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include a local file-include vulnerability a...

JAF CMS Multiple Remote File Include and Remote Shell Command Execution Vulnerabilities

JAF CMS is prone to an shell-command-execution vulnerability and multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit the remote shell-command-execution issue to execute arbitrary shell commands in the context...

Home File Share Server 0.7.2 32 - Directory Traversal

Home File Share Server 0.7.2 32 - Directory Traversal source: https://www.securityfocus.com/bid/44580/info Home File Share Server is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacke...

Douran Portal 3.9.7.55 - Arbitrary File Upload / Cross-Site Scripting

source: https://www.securityfocus.com/bid/44594/info Douran Portal is prone to an arbitrary-file-upload vulnerability and a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. Attackers can exploit these issues to upload and execute...

Home File Share Server 0.7.2 32 - Directory Traversal

source: https://www.securityfocus.com/bid/44580/info Home File Share Server is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary local files within the context of...

TFTgallery 'thumbnailformpost.inc.php' Local File Include Vulnerability

TFTgallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow t...