4 matches found
Joomla com_flexicontent远程代码执行漏洞
Joomla是一款内容管理系统。 该漏洞是包含在comflexicontent包中的phpthumb已知漏洞,参数被传递到“ImageMagickThumbnailToGD”时,在"SafeExec"函数被利用。 0 Joomla comflexicontent =2.1.3 目前厂商暂无提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.joomla.org/ ---- POC: Windows-...
Joomla Flexicontent Remote Code Execution
Exploit Title: Joomla comflexicontent Remote Code Execution Release Date: 08/12/2013 Author: Deepankar Arora And Rafay Baloch Contact: http://rafayhackingarticles.net Vendor: http://www.flexicontent.org/ Versions Affected: 2.1.3Latest and earlier Google Dork: inurl:comflexicontent ---- Descriptio...
Joomla Flexicontent Remote Code Execution Vulnerability
Joomla Flexicontent component suffers from a code execution vulnerability due to the inclusion of phpthumb. Exploit Title: Joomla comflexicontent Remote Code Execution Release Date: 08/12/2013 Author: Deepankar Arora And Rafay Baloch Contact: http://rafayhackingarticles.net Vendor:...
CVE-2010-1598
Summary: CVE-2010-1598 affects phpThumb.php in phpThumb() 1.7.9 (and possibly earlier) when ImageMagick is installed, enabling remote command execution via the fltr[] parameter. Several sources corroborate a PHPThumb command-injection vulnerability exposed through the ImageMagick-related filter h...