DjangoUEditor 1.9.143 arbitrary file upload vulnerability

Background improper handling, leading to arbitrary file upload. Local download the django version of ueditor, installed after a good visit: Open the upload, the capture of: Now we pass a py file, you can see is prohibited, as is the white list restrictions. But modify imagePathFormat the value to...

Arbitrary code execution vulnerability in Finecms backend controllers\admin\Sms.php page

FineCMS is a content management system CMS developed using MVC architecture and PDO database interface. An arbitrary code execution vulnerability exists in the Finecms backend controllers\admin\Sms.php page. Since the array2string function does not filter the submitted data, allowing attackers to...

Kinsey Infor / Lawson / ESBUS - SQL Injection Vulnerability

Exploit for jsp platform in category web applications Exploit Title: Kinsey Infor / Lawson ESBUS - Multiple SQL Injections Date: 3/10/2017 Exploit Author: Michael Benich Vendor homepage: http://www.kinsey.com/infor-lawson.html Version: ALL Tested on: Windows Server 2008 R2; MySQL ver 5.5 CVE:...

File Upload Vulnerability at Kirin Fortress Application Publishing Feature

Kirin Fortress is the open source operations and maintenance fortress. A file upload vulnerability exists at the application icon upload in the application publishing feature of KyLin Fortress. This allows attackers to upload a webshell and gain server privileges...

Kinsey's Infor-Lawson SQL Injection

Summary: Kinsey's Infor-Lawson application formerly ESBUS is vulnerable to SQL injection in at least two parameters: ------------------------------------------------------------------------ Vendor: Kinsey ------------------------------------------------------------------------ Software Link:...

Kinsey InforLawson ESBUS - SQL Injection

Kinsey InforLawson ESBUS - SQL Injection Exploit Title: Kinsey Infor / Lawson ESBUS - Multiple SQL Injections Date: 3/10/2017 Exploit Author: Michael Benich Vendor homepage: http://www.kinsey.com/infor-lawson.html Version: ALL Tested on: Windows Server 2008 R2; MySQL ver 5.5 CVE: CVE-2017-6550...

Arbitrary File Upload Vulnerability in eWebEditor Editor of Fuzhou Extreme Software Development Co.

Fuzhou Extreme Software Development Co. eWebEditor editor is a browser-based online HTML editor. An arbitrary file upload vulnerability exists in the eWebEditor editor of Fuzhou Extreme Software Development Co. Due to logging into the backend via anonymous access or weak account/password...

Ubiquiti Inc.: Weak credentials for nutty.ubnt.com

nutty.ubnt.com has a login link, when clicking on it the user is presented with a login form. using 'admin' for both username and password results in valid session. this account allow for the upload of arbitrary files. I am checking to see if this will allow for further functionality like a websh...

CVE-2017-5219

An issue was discovered in SageCRM 7.x before 7.3 SP3. The Component Manager functionality, provided by SageCRM, permits additional components to be added to the application to enhance provided functionality. This functionality allows a zip file to be uploaded, containing a valid .ecf component...

Arbitrary Command Execution Vulnerability in Knight CMS

Knight CMS Talent System is a professional talent system based on PHP+MYSQL. Knight CMS version 4.1.0 suffers from an arbitrary command execution vulnerability. Due to the Knight CMS V4.1.0 using the tp framework there is a template engine remote code execution vulnerability. Attackers can exploi...

Fckeditor Arbitrary File Upload Vulnerability and Directory Traversal Vulnerability in Office System of Ningbo Jieda Software Co.

Jeedaa ERP software is designed for domestic small and medium-sized manufacturing enterprises that produce or process on their own, and at the same time incidentally carry out sales. Jeedaa Office Management System Jeedaa OA is a collaborative office management platform. Jeeda eHR is used to...

Arbitrary File Write Vulnerability in FineCMS Backend

FineCMS is a small and medium-sized content management system based on PHP+MySql+CI framework. An arbitrary file write vulnerability exists in the config/site.ini.php page of the FineCMS backend. Allows attackers to upload webshell and gain server privileges...

Arbitrary File Upload Vulnerability in NetSense SECWORLD VPN

NetSense SECWORLD VPN is a secure access gateway system. NetShen SECWORLD VPN has an arbitrary file upload vulnerability. The /admin/account/useraddaction.php page has no restrictions on file uploads, allowing an attacker to directly upload a webshell and gain server privileges...

Faraday v2.2 - Collaborative Penetration Test and Vulnerability Management Platform

Faraday is the Integrated Multiuser Risk Environment you were looking for! It maps and leverages all the knowledge you generate in real time, letting you track and understand your audits. Our dashboard for CISOs and managers uncovers the impact and risk being assessed by the audit in real-time...

Arbitrary File Upload Vulnerability in Dotclear

Dotclear is an open source free web publishing software, created by Olivier Meunier in 2002. Dotclear suffers from an arbitrary file upload vulnerability. Due to the administrator theme management page blogtheme.php, inc/core/class.dc.modules.php there is a theme legitimacy checking problem,...

Arbitrary file upload vulnerability in the $_FILES ['ttsFile'] and $_POST['taskid'] parameters of the Mixcall agent management system.

Mixcall seat management system is based on B/S architecture, the management personnel can directly log into the Mixcall seat management center through the computer, and view the detailed situation related to the seat personnel's voice services. An arbitrary file upload vulnerability exists in the...

Arbitrary File Upload Vulnerability in SignName Parameter of Tibco Call Center System

The core of Tibco's call center system is a communication-based system for internal and external corporate communication. An arbitrary file upload vulnerability exists in the signName parameter of the Tibus Communication Call Center System. 1 File upload: /sysmaint/import/import.php, save...

File upload vulnerability in the file /justsetting/justsetting3.php of the Tidetime Communications call center system

The core of Tibco's call center system is a communication-based system for internal and external corporate communication. A file upload vulnerability exists in the file /justsetting/justsetting3.php in the Tidetime Communications Call Center System. The vulnerability can be exploited to upload a...

File upload vulnerability in the file /userweb/php/index/daPing.class.php of the Tibus Communications call center system

The core of Tibco's call center system is a communication-based system for internal and external corporate communication. A file upload vulnerability exists in the file /userweb/php/index/daPing.class.php in the Tibco Call Center System. The vulnerability allows an attacker to upload a webshell a...

Tunnel TCP connections over HTTP: Tunna

Tunnel TCP connections over HTTP Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments. In a fully firewalled inbound and outbound connections restricted – except the webserver port. The...