Lucene search
K

49 matches found

OSV
OSV
added 2007/03/22 11:19 p.m.7 views

CVE-2007-1595

The Asterisk Extension Language AEL in pbx/pbxael.c in Asterisk does not properly generate extensions, which allows remote attackers to execute arbitrary extensions and have an unknown impact by specifying an invalid extension in a certain form...

7.2AI score
Exploits0References7
Debian CVE
Debian CVE
added 2007/03/22 11:0 p.m.34 views

CVE-2007-1595

The Asterisk Extension Language AEL in pbx/pbxael.c in Asterisk does not properly generate extensions, which allows remote attackers to execute arbitrary extensions and have an unknown impact by specifying an invalid extension in a certain form...

7.5CVSS7.1AI score0.02602EPSS
Exploits0
NVD
NVD
added 2006/09/19 9:7 p.m.14 views

CVE-2006-4875

Unrestricted file upload vulnerability in modules/galleryuploadfunction.php in Jupiter CMS allows remote attackers to upload picture files, and possibly files with arbitrary extensions, to gallery/albums/public...

5CVSS6.8AI score0.06599EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/09/19 9:0 p.m.24 views

CVE-2006-4875

Unrestricted file upload vulnerability in modules/galleryuploadfunction.php in Jupiter CMS allows remote attackers to upload picture files, and possibly files with arbitrary extensions, to gallery/albums/public...

6.8AI score0.06599EPSS
Exploits0References3
CVE
CVE
added 2006/09/19 9:0 p.m.60 views

CVE-2006-4875

CVE-2006-4875 refers to an Unrestricted file upload vulnerability in Jupiter CMS, specifically in the module galleryuploadfunction.php, enabling remote attackers to upload picture files (and possibly files with arbitrary extensions) to the path gallery/albums/public. The NVD entry documents this ...

5CVSS6.9AI score0.06599EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2006/07/25 12:0 a.m.55 views

CVE-2006-3830

The CVE-2006-3830 issue affects Kailash Nadh’s boastMachine (formerly bMachine) up to version 3.1. Remote authenticated administrators can upload files with arbitrary extensions to the bmc/Inc/Lang directory. The uploaded files are not served over HTTP, so exploitation hinges on a local usage pat...

4CVSS6.5AI score0.00812EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2006/05/31 10:6 a.m.13 views

CVE-2006-2695

admin/upprocess.php in DGNews 1.5 and earlier allows remote attackers to execute arbitrary code by uploading scripts with arbitrary extensions to the img directory...

5.1CVSS7.7AI score0.02309EPSS
Exploits0References5
NVD
NVD
added 2005/09/28 11:3 p.m.18 views

CVE-2005-3102

The administrative interface in Movable Type allows attackers to upload files with arbitrary extensions under the web root...

5CVSS6.6AI score0.01137EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/08/26 12:0 a.m.34 views

[SA16598] Simple PHP Blog Image File Upload Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.6AI score
Exploits0
Rows per page
Query Builder