CakePHP 2.x-2.2.0-RC2 XXE Injection

Exploit title: CakePHP XXE injection Date: 01.07.2012 Software Link: http://www.cakephp.org Vulnerable version: 2.x - 2.2.0-RC2 Tested on: Windows and Linux Author: Pawel Wylecial http://h0wl.pl 1. Background Short description from the project website: "CakePHP makes building web applications...

CakePHP 2.x-2.2.0-RC2 XXE Injection

Exploit for php platform in category web applications Exploit title: CakePHP XXE injection Date: 01.07.2012 Software Link: http://www.cakephp.org Vulnerable version: 2.x - 2.2.0-RC2 Tested on: Windows and Linux Author: Pawel Wylecial http://h0wl.pl 1. Background Short description from the project...

CakePHP 2.2.0-RC2 XXE Injection

Exploit title: CakePHP XXE injection Date: 01.07.2012 Software Link: http://www.cakephp.org Vulnerable version: 2.x - 2.2.0-RC2 Tested on: Windows and Linux Author: Pawel Wylecial http://h0wl.pl 1. Background Short description from the project website: "CakePHP makes building web applications...

CakePHP 2.x 2.2.0-RC2 - XML External Entity Injection

CakePHP 2.x 2.2.0-RC2 - XML External Entity Injection Exploit title: CakePHP XXE injection Date: 01.07.2012 Software Link: http://www.cakephp.org Vulnerable version: 2.x - 2.2.0-RC2 Tested on: Windows and Linux Author: Pawel Wylecial http://h0wl.pl 1. Background Short description from the project...

CakePHP 2.x < 2.2.0-RC2 - XML External Entity Injection

Exploit title: CakePHP XXE injection Date: 01.07.2012 Software Link: http://www.cakephp.org Vulnerable version: 2.x - 2.2.0-RC2 Tested on: Windows and Linux Author: Pawel Wylecial http://h0wl.pl 1. Background Short description from the project website: "CakePHP makes building web applications...

VamCart v0.9 CMS - persistent XSS Vulnerabilities

Exploit for php platform in category web applications VamCart v0.9 CMS - persistent XSS Vulnerabilities Introduction: ============= VamCart is a Free, Open Source, CakePHP Based Shopping Cart Content Management System. VamCart is a Open Source Project under the GNU GPL license with the following...

VamCart CMS 0.9 Cross Site Scripting

Title: ====== VamCart v0.9 CMS - Multiple Web Vulnerabilities Date: ===== 2012-06-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=622 VL-ID: ===== 622 Common Vulnerability Scoring System: ==================================== 4 Introduction: ============= VamCart is a...

VamCart v0.9 CMS - Multiple Web Vulnerabilities

Document Title: =============== VamCart v0.9 CMS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=622 Release Date: ============= 2012-06-24 Vulnerability Laboratory ID VL-ID: ==================================== 622 Common...

Croogo CMS 1.3.4 Cross Site Scripting

Title: ====== Croogo v1.3.4 CMS - Multiple Web Vulnerabilities Date: ===== 2012-04-28 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=533 VL-ID: ===== 533 Introduction: ============= A CakePHP powered Content Management System. Croogo is a free and open source content...

CVE-2011-3712

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

CVE-2011-3712

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

Information disclosure

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

UBUNTU-CVE-2011-3712

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

CVE-2011-3712

CVE-2011-3712 concerns CakePHP 1.3.7, where a vulnerability allows remote attackers to disclose sensitive information by requesting certain .php files, causing error messages that reveal the installation path (e.g., dispatcher.php). The connected documents consistently describe this information d...

CVE-2011-3712

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

PT-2011-4602 · Cakephp · Cakephp

Name of the Vulnerable Software and Affected Versions: CakePHP version 1.3.7 Description: The issue allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain...

http-cakephp-version NSE Script

Obtains the CakePHP version of a web application built with the CakePHP framework by fingerprinting default files shipped with the CakePHP framework. This script queries the files 'vendors.php', 'cake.generic.css', 'cake.icon.png' and 'cake.icon.gif' to try to obtain the version of the CakePHP...

CakePHP <= 1.3.5 / 1.2.8 unserialize() Vulnerability-vulnerability warning-the black bar safety net

| Source: CakePHP = 1.3.5 / 1.2.8 unserialize Vulnerability felix |at| malloc. im =========================================================================== ==== Overview: "CakePHP is a rapid development framework for PHP that provides an extensible architecture for developing, maintaining, and...

CakePHP 1.3.5/1.2.8 - &#039;Unserialize()&#039; File Inclusion

Source: http://securityreason.com/securityalert/8026 CakePHP data; $token = urldecode$check'Token''fields'; if strpos$token, ':' list$token, $locked = explode':', $token, 2; $locked = unserializestrrot13$locked; -- snip -- The $check array contains our POST data and $locked is a simple rot-13...

CakePHP 1.3.51.2.8 - Unserialize() File Inclusion

CakePHP 1.3.51.2.8 - Unserialize File Inclusion Source: http://securityreason.com/securityalert/8026 CakePHP data; $token = urldecode$check'Token''fields'; if strpos$token, ':' list$token, $locked = explode':', $token, 2; $locked = unserializestrrot13$locked; -- snip -- The $check array contains...