Remote code execution

A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. The username variable which is set at line 121 in install/Step5.php allows for injection of PHP code into the Data.php file that it writes. An attacker can send an HTTP request to trigger this...

OS4Ed openSIS install remote code execution vulnerability

Summary A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. A specially crafted HTTP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions OS4Ed openSIS 7.4 Product URLs...

Horde 5.2.22 CSV Import Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Horde CSV import arbitrary PHP code execution', 'Description' = %q The HordeData module version 2.1.4 and before present in Horde Groupware versi...

CVE-2014-4170

A Privilege Escalation Vulnerability exists in Free Reprintables ArticleFR 11.06.2014 due to insufficient access restrictions in the data.php script, which could let a remote malicious user obtain access or modify or delete database information...

Privilege escalation

A Privilege Escalation Vulnerability exists in Free Reprintables ArticleFR 11.06.2014 due to insufficient access restrictions in the data.php script, which could let a remote malicious user obtain access or modify or delete database information...

CVE-2014-4170

A Privilege Escalation Vulnerability exists in Free Reprintables ArticleFR 11.06.2014 due to insufficient access restrictions in the data.php script, which could let a remote malicious user obtain access or modify or delete database information...

CVE-2019-16868

Emlog (up to 6.0.0beta) is vulnerable to arbitrary file deletion via admin/data.php?action=dell_all_bak with directory traversal in bak[]. This can delete arbitrary files. Confirmed by CVE-2019-16868 entries (NVD, Red Hat). CVSSv3.1 base score 9.8 (CRITICAL): Network-based, no auth, no user inter...

Cross site scripting

includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if users/admin/tasks.php exists...

CVE-2019-7748

includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if users/admin/tasks.php exists...

CVE-2019-7747

DbNinja 3.2.7 allows session fixation via the data.php sessid parameter...

CVE-2019-7747

DbNinja 3.2.7 allows session fixation via the data.php sessid parameter...

CVE-2019-7748

includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if users/admin/tasks.php exists...

CVE-2019-7747

CVE-2019-7747 affects DbNinja 3.2.7 and enables session fixation through the data.php sessid parameter. The issue’s root cause is the use of a data.php sessid token that can allow an attacker to establish or hijack a user session. Public references indicate the vulnerability exists, with NVD noti...

CVE-2019-7747

DbNinja 3.2.7 allows session fixation via the data.php sessid parameter...

CVE-2018-19558

An issue was discovered in arcms through 2018-03-19. SQL injection exists via the json/newslist limit parameter because of ctl/main/Json.php, ctl/main/service/Data.php, and comp/Db/Mysql.php...

Sql injection

An issue was discovered in arcms through 2018-03-19. SQL injection exists via the json/newslist limit parameter because of ctl/main/Json.php, ctl/main/service/Data.php, and comp/Db/Mysql.php...

cena.ps XSS vulnerability

Vulnerable URL: http://www.cena.ps/data.php?id=19=2'" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check cena.ps SSL connection:|...

phpok 4.0.556 /data.php SQL注入漏洞

No description provided by source...

aidiCMS 3.55 - (ajax_create_folder.php) Remote Code Execution

No description provided by source. ?php / -------------------------------------------------------------------- aidiCMS v3.55 ajaxcreatefolder.php Remote Code Execution Exploit -------------------------------------------------------------------- author............: Egidio Romano aka EgiX...

Log1 CMS writeInfo() PHP Code Injection (CVE-2011-4825)

A PHP code injection vulnerability has been reported in the "Ajax File and Image Manager" component in log1 CMS. A remote attacker could inject arbitrary PHP code into data.php via crafted parameters...