Lucene search
K

7 matches found

Packet Storm
Packet Storm
added 2007/03/14 12:0 a.m.28 views

assetman24-lfi.txt

+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= | |AssetMan 2.4a = downloadpdf.php Remote File Disclosure Vulnerability | |Script: AssetMan | |Verson: 2.4a | |URL: http://www.bctree.com/assetman/assetman-2.4a.zip | |Discover: BorN To K!LL |...

7.4AI score
Exploits0
NVD
NVD
added 2007/03/13 1:19 a.m.17 views

CVE-2007-1427

Directory traversal vulnerability in downloadpdf.php in AssetMan 2.4a and earlier allows remote attackers to read arbitrary files via a .. dot dot in the pdffile parameter...

5CVSS6.7AI score0.02911EPSS
Exploits1References4
CVE
CVE
added 2007/03/13 1:0 a.m.47 views

CVE-2007-1427

CVE-2007-1427 describes a directory traversal vulnerability in AssetMan 2.4a and earlier, located in download_pdf.php. The issue arises from the pdf_file parameter, where a .. (dot dot) path traversal allows a remote attacker to read arbitrary files on the server. The entry notes impact as readin...

5CVSS6.7AI score0.02911EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2007/03/13 1:0 a.m.22 views

CVE-2007-1427

Directory traversal vulnerability in downloadpdf.php in AssetMan 2.4a and earlier allows remote attackers to read arbitrary files via a .. dot dot in the pdffile parameter...

6.7AI score0.02911EPSS
Exploits1References4
seebug.org
seebug.org
added 2007/03/12 12:0 a.m.49 views

AssetMan <= 2.4a (download_pdf.php) Remote File Disclosure Vuln

No description provided by source. +=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= | |AssetMan 2.4a = downloadpdf.php Remote File Disclosure Vulnerability | |Script: AssetMan | |Verson: 2.4a | |URL: http://www.bctree.com/assetman/assetman-2.4a.zip | |Discover: BorN To K!LL |...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/03/11 12:0 a.m.15 views

AssetMan &lt;= 2.4a (download_pdf.php) Remote File Disclosure Vuln

No description provided by source. +=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= | |AssetMan 2.4a = downloadpdf.php Remote File Disclosure Vulnerability | |Script: AssetMan | |Verson: 2.4a | |URL: http://www.bctree.com/assetman/assetman-2.4a.zip | |Discover: BorN To K!LL |...

7.1AI score
Exploits0
Prion
Prion
added 2006/05/30 10:2 a.m.9 views

Cross site scripting

UNVERIFIABLE NOTE: this issue does not contain any verifiable or actionable details. Cross-site scripting XSS vulnerability in John Frank Asset Manager AssetMan 2.4a and earlier allows remote attackers to inject arbitrary web script or HTML via "any of its input." NOTE: the original disclosure is...

5.8CVSS6.2AI score0.01299EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder