7 matches found
EUVD-2007-1135
Malware in sbrugna...
Unrestricted file upload
Unrestricted file upload vulnerability in Cromosoft Simple Plantilla PHP SPP allows remote attackers to upload arbitrary scripts via a filename with a double extension...
CVE-2007-1138
Absolute path traversal vulnerability in listmainpages.php in Cromosoft Simple Plantilla PHP SPP allows remote attackers to list arbitrary directories, and read arbitrary files, via an absolute pathname in the nfolder parameter...
CVE-2007-1139
Unrestricted file upload vulnerability in Cromosoft Simple Plantilla PHP SPP allows remote attackers to upload arbitrary scripts via a filename with a double extension...
CVE-2007-1138
Absolute path traversal vulnerability in listmainpages.php in Cromosoft Simple Plantilla PHP SPP allows remote attackers to list arbitrary directories, and read arbitrary files, via an absolute pathname in the nfolder parameter...
CVE-2007-1138
CVE-2007-1138 affects Cromosoft Simple Plantilla PHP (SPP). A vulnerability in list_main_pages.php allows absolute path traversal via the nfolder parameter, enabling remote attackers to list arbitrary directories and read arbitrary files. The issue is rooted in an improper handling of absolute pa...
CVE-2007-1139
CVE-2007-1139 describes an unrestricted file upload vulnerability in Cromosoft Simple Plantilla PHP (SPP). The flaw allows remote attackers to upload arbitrary scripts by using a filename with a double extension, enabling potential code execution or defacement on the affected server. The NVD entr...