ATutor 1.5.1 - Chat Logs Remote Information Disclosure

ATutor 1.5.1 - Chat Logs Remote Information Disclosure source: https://www.securityfocus.com/bid/14832/info ATutor is prone to a remote information disclosure vulnerability. This issue is due to a failure in the application to perform proper access validation before granting access to privileged...

ATutor 1.5.1 - Chat Logs Remote Information Disclosure

source: https://www.securityfocus.com/bid/14832/info ATutor is prone to a remote information disclosure vulnerability. This issue is due to a failure in the application to perform proper access validation before granting access to privileged information. A remote attacker can exploit this...

CitrusDB 0.3.6 - importcc.php CSV File SQL Injection

CitrusDB 0.3.6 - importcc.php CSV File SQL Injection source: https://www.securityfocus.com/bid/12557/info CitrusDB is reportedly affected by an access validation vulnerability during the upload of CSV files. Exploitation of this issue could result in path disclosure or SQL injection. The issue...

Fusionphp Fusion News 3.33.6 - Administrator Command Execution

Fusionphp Fusion News 3.33.6 - Administrator Command Execution source: https://www.securityfocus.com/bid/10836/info It is reported that Fusion News is affected by an administrator command execution vulnerability. This issue is due to a failure of the application to properly validate access to...

JBrowser 1.0/2.x - Unauthorized Admin Access

source: https://www.securityfocus.com/bid/9537/info Due to a lack of access validation to the 'admin' directory, malevolent users may be able to execute arbitrary admin scripts. This may allow a malicious user to upload arbitrary files to the affected system and gain access to files outside of th...