Joomla CCNewsLetter Directory Traversal

...BEGIN ADVISORY... !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! TITLE: Joomla comccnewsletter Directory Traversal Vulnerability LANGUAGE: PHP DORK: N/A RESEARCHER: B-HUNT3|2 CONTACT: bhunt3ratnospamgmaildotnospamcom TESTED ON: LocalHost -- Sorry for not...

Joomla! Component CCNewsLetter - Directory Traversal

Joomla! Component CCNewsLetter - Directory Traversal ...BEGIN ADVISORY... !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! TITLE: Joomla comccnewsletter Directory Traversal Vulnerability LANGUAGE: PHP DORK: N/A RESEARCHER: B-HUNT3|2 CONTACT:...

Joomla Component com_ccnewsletter Directory Traversal Vulnerability

Exploit for unknown platform in category web applications =================================================================== Joomla Component comccnewsletter Directory Traversal Vulnerability =================================================================== ...BEGIN ADVISORY...

Joomla! Component CCNewsLetter - Directory Traversal

...BEGIN ADVISORY... !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! TITLE: Joomla comccnewsletter Directory Traversal Vulnerability LANGUAGE: PHP DORK: N/A RESEARCHER: B-HUNT3|2 CONTACT: bhunt3ratnospamgmaildotnospamcom TESTED ON: LocalHost -- Sorry for not...

Open Media Collectors Database Multiple Local File Include Vulnerabilities

Open Media Collectors Database OpenDb is prone to multiple local file- include vulnerabilities because it fails to properly sanitize user- supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information and execute arbitrary local scripts in the context o...

SiteX 'THEME_FOLDER' Parameter Multiple Local File Include Vulnerabilities

SiteX is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow the...

Bits Video Script 2.042.05 - register.php Arbitrary File Upload Arbitrary PHP Code Execution

Bits Video Script 2.042.05 - register.php Arbitrary File Upload Arbitrary PHP Code Execution source: https://www.securityfocus.com/bid/40712/info Bits Video Script is prone to multiple arbitrary-file-upload vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can...

Bits Video Script 2.05 Gold Beta - showcasesearch.php?rowptem[template] Remote File Inclusion

Bits Video Script 2.05 Gold Beta - showcasesearch.php?rowptemtemplate Remote File Inclusion source: https://www.securityfocus.com/bid/40709/info Bits Video Script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can...

Bits Video Script 2.042.05 - addvideo.php Arbitrary File Upload Arbitrary PHP Code Execution

Bits Video Script 2.042.05 - addvideo.php Arbitrary File Upload Arbitrary PHP Code Execution source: https://www.securityfocus.com/bid/40712/info Bits Video Script is prone to multiple arbitrary-file-upload vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can...

Bits Video Script 2.05 Gold Beta - showcase2search.php?rowptem[template] Remote File Inclusion

Bits Video Script 2.05 Gold Beta - showcase2search.php?rowptemtemplate Remote File Inclusion source: https://www.securityfocus.com/bid/40709/info Bits Video Script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can...

Bits Video Script 2.04/2.05 - '/register.php' Arbitrary File Upload / Arbitrary PHP Code Execution

source: https://www.securityfocus.com/bid/40712/info Bits Video Script is prone to multiple arbitrary-file-upload vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to upload arbitrary code and run it in the context of the...

Bits Video Script 2.04/2.05 - '/addvideo.php' Arbitrary File Upload / Arbitrary PHP Code Execution

source: https://www.securityfocus.com/bid/40712/info Bits Video Script is prone to multiple arbitrary-file-upload vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to upload arbitrary code and run it in the context of the...

Bits Video Script 2.05 Gold Beta - 'showcasesearch.php?rowptem[template]' Remote File Inclusion

source: https://www.securityfocus.com/bid/40709/info Bits Video Script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute...

Bits Video Script 2.05 Gold Beta - 'showcase2search.php?rowptem[template]' Remote File Inclusion

source: https://www.securityfocus.com/bid/40709/info Bits Video Script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute...

dokuwiki -- multiple vulnerabilities

Dokuwiki reports: The plugin does no checks against cross-site request forgeries CSRF which can be exploited to e.g. change the access control rules by tricking a logged in administrator into visiting a malicious web site. The bug allows listing the names of arbitrary file on the webserver - not...

IT-Grundschutz M4.192: Konfiguration des Betriebssystems für einen Apache-Webserver (Windows)

IT-Grundschutz M4.192: Konfiguration des Betriebssystems für einen Apache-Webserver Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde zudem in neueren EL gestrichen. Diese Prüfung bezieht sich auf die 10. Ergänzungslieferung 10. EL des IT- Grundschutz. Die detaillierte...

IT-Grundschutz M4.195: Konfiguration der Zugriffssteuerung beim Apache-Webserver (Windows)

IT-Grundschutz M4.195: Konfiguration der Zugriffssteuerung beim Apache-Webserver Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde zudem in neueren EL gestrichen. Diese Prüfung bezieht sich auf die 10. Ergänzungslieferung 10. EL des IT- Grundschutz. Die detaillierte Beschreibung...

IT-Grundschutz M5.107: Verwendung von SSL im Apache-Webserver

IT-Grundschutz M5.107: Verwendung von SSL im Apache-Webserver. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde zudem in neueren EL gestrichen. Diese Prüfung bezieht sich auf die 10. Ergänzungslieferung 10. EL des IT- Grundschutz. Die detaillierte Beschreibung zu dieser Maßnahme findet...

IT-Grundschutz M4.196: Sicherer Betrieb eines Apache-Webservers (Windows)

IT-Grundschutz M4.196: Sicherer Betrieb eines Apache-Webservers Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde zudem in neueren EL gestrichen. Diese Prüfung bezieht sich auf die 10. Ergänzungslieferung 10. EL des IT- Grundschutz. Die detaillierte Beschreibung zu dieser Maßnah...

IT-Grundschutz M4.197: Servererweiterungen für dynamische Webseiten beim Apache-Webserver (Windows)

IT-Grundschutz M4.197: Servererweiterungen für dynamische Webseiten beim Apache-Webserver Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde zudem in neueren EL gestrichen. Diese Prüfung bezieht sich auf die 10. Ergänzungslieferung 10. EL des IT- Grundschutz. Die detaillierte...