11 matches found
Elastic Kibana Security Vulnerability
Elastic Kibana is an application from the Dutch company Elastic. A free and open user interface that enables you to visualize Elasticsearch data and lets you navigate through the Elastic Stack. Elastic Kibana suffers from a security vulnerability that stems from not validating user-supplied paths...
Arbitrary File Traversal Read Delete Vulnerability in Shida Highway Project Management Information System
Servcorp Highway Project Management Information System is an engineering project management platform developed for project participants. The Servcorp Expressway Project Management Information System has an arbitrary file traversal read and delete vulnerability that can be exploited by an attacker...
Arbitrary File Traversal Vulnerability in Ampcom Application Gateway
Ambient Application Gateway is an inter-network device developed by Beijing Ambient Technology Co., Ltd. to interconnect one network with another and provide specific applications. An arbitrary file traversal vulnerability exists in the ABT Application Gateway. An attacker can use user-controllab...
Arbitrary File Traversal Vulnerability in Mail Server CMailServer Webmail
Mail Server CMailServer Webmail is a mail sending and receiving system. Mail Server CMailServer Webmail arbitrary file traversal vulnerability, an attacker can obtain sensitive system file information...
Arbitrary File Traversal Vulnerability in Reporter System of Shanghai Bingfeng Computer Network Technology Co.
Shanghai Bingfeng Computer Network Technology Co., Ltd. is a domestic VPN, Traffic Management, Behavior Management, Link Load Balancing, Next Generation Firewall equipment supplier and IT value solution provider. Bingfeng network reporter system is a set of data report management system. Shanghai...
用友ERP-NC任意文件遍历漏洞
No description provided by source...
SDCMS某处设计缺陷导致遍历任意文件内容
简要描述: SDCMS某处设计缺陷导致遍历任意文件内容 详细说明: 1、首先看看缺陷文件: 文件/sdcms/admin/sdtheme.asp ...... 第138行: case "edit" dim filename:filename=sdcms.fget"filename",0 if notsdcms.checkstrfilename,"filename" then sdcms.echo "filename is wrong" sdcms.die end if if notsdcms.isfile"../theme/"&filename then sdcms.echo...
Flatnux CMS 2011 08.09.2 CSRF / XSS / Directory Traversal
Title: ====== Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities Date: ===== 2012-04-01 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=487 VL-ID: ===== 487 Introduction: ============= Flatnux is no database CMS for accessible websites, corporate websites, e-commer...
Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities
Document Title: =============== Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=487 Release Date: ============= 2012-03-31 Vulnerability Laboratory ID VL-ID: ==================================== 487...
Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities
Document Title: =============== Flatnux CMS 2011 08.09.2 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=487 Release Date: ============= 2012-03-31 Vulnerability Laboratory ID VL-ID: ==================================== 487...
Honeywall admin interface arbitrary file read vulnerability-vulnerability warning-the black bar safety net
Publishing author: cnyouker Vulnerability type: arbitrary file traversal/download Vulnerability description: Honeywall admin interface arbitrary file read vulnerability Detailed description: admin/docs.pl for the POST of the file check is not strict. Can construct their own post package to read...