Path traversal

tecrail Responsive FileManager 9.13.4 allows remote attackers to delete an arbitrary directory as a consequence of a paths0 path traversal mitigation bypass through the deletefolder action in execute.php...

tecrail Responsive FileManager Arbitrary Directory Deletion Vulnerability

tecrail Responsive FileManager is an open source file manager written in PHP by the Italian company tecrail. The product supports the uploading and management of videos, images or other files. A security vulnerability exists in the 'deletefolder' function of the execute.php file in version 9.13.4...

Sql injection

Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 allow remote attackers to execute arbitrary SQL commands via the 1 deletefolder and 2 deletelink parameters to unspecified vectors, possibly to a plugins/bookmarker/bookmarkerbackend.php or b ajaxp.php, different vectors than...

CVE-2008-5655

MyioSoft EasyBookMarker 4.0 is affected by CVE-2008-5655 and related CVE-2008-5654, with concrete details describing SQL injection in the loginADP function pathway. Specifically, both CVEs reference vulnerabilities in EasyCalendar/EasyBookMarker components where the parameters (1) delete_folder a...

CVE-2008-5655

Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 allow remote attackers to execute arbitrary SQL commands via the 1 deletefolder and 2 deletelink parameters to unspecified vectors, possibly to a plugins/bookmarker/bookmarkerbackend.php or b ajaxp.php, different vectors than...