CVE-2007-3968

index.php in dirLIST before 0.1.1 allows remote attackers to list the contents of an excluded folder via a modified URL containing the folder name...

UBUNTU-CVE-2021-47107

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix READDIR buffer overflow If a client sends a READDIR count argument that is too small say, zero, then the buffer size calculation in the new initdirlist helper functions results in an underflow, allowing the XDR stream...

VB 6.0 Dirlist Object Code Execution Exploit

/ VB 6.0 Dirlist Object Code Execution Author : Hexrain Tutorial Video : https://youtu.be/BLFbUJ4n8hY Twitter : @smashedkernel Greetz : OA Cybersec wornix blacknbunny / import sys try: commandfile = sys.argv1 poc = 'End If\nEnd Sub\nlPtr = Private Type Private Type\nRtlMoveMemory ByVal lPtr, &HE8...

dirLIST 0.3.0 - Arbitrary File Upload

dirLIST 0.3.0 - Arbitrary File Upload + + Credits / Discovery: John Page + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/DIRLIST-FILE-UPLOAD-BYPASS-CMD-EXEC.txt + ISR: Apparition + Vendor: =============== sourceforge.net Product: =============== dirList...

dirLIST 0.3.0 - Arbitrary File Upload

Credits / Discovery: John Page + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/DIRLIST-FILE-UPLOAD-BYPASS-CMD-EXEC.txt + ISR: Apparition + Vendor: =============== sourceforge.net Product: =============== dirList v0.3.0 Download: ===========...

dirList 0.3.0 File Upload / Command Execution

Credits / Discovery: John Page + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/DIRLIST-FILE-UPLOAD-BYPASS-CMD-EXEC.txt + ISR: Apparition + Vendor: =============== sourceforge.net Product: =============== dirList v0.3.0 Download: ===========...

dirLIST 0.3.0 Local File Inclusion

Exploit Title: dirLIST v 0.3.0 Multiple Vulnerabilities Date: 08/08/2012 Author: L0n3ly-H34rT Homepage: http://se3c.tk/ Contact: [email protected] Software Link: http://sourceforge.net/projects/dir-list/files/latest/download Tested on: Linux/Windows First : Multiple Local File Includsion : ...

dirLIST 0.3.0 - Local File Inclusion

source: https://www.securityfocus.com/bid/54933/info dirLIST is prone to multiple local file-include vulnerabilities and an arbitrary-file upload vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to upload arbitrary file...

dirLIST 0.3.0 - Local File Inclusion

dirLIST 0.3.0 - Local File Inclusion source: https://www.securityfocus.com/bid/54933/info dirLIST is prone to multiple local file-include vulnerabilities and an arbitrary-file upload vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit...

dirlist-traverse.txt

@===========================================@ | Author = StAkeR [email protected] | @===========================================@ + @==============================================================@ | dirLIST = Arbitrary File Download Vulnerability |...

Design/Logic Flaw

index.php in dirLIST before 0.1.1 allows remote attackers to list the contents of an excluded folder via a modified URL containing the folder name...

CVE-2007-3968

index.php in dirLIST before 0.1.1 allows remote attackers to list the contents of an excluded folder via a modified URL containing the folder name...

CVE-2007-3968

CVE-2007-3968 affects the dirLIST project prior to version 0.1.1. A remote attacker can cause disclosure of directory contents by issuing a crafted URL containing an excluded folder name. This yields partial confidentiality impact (C:N/I:N/A:L per CVSS v3.1) with network access and no authenticat...

CVE-2007-3968

index.php in dirLIST before 0.1.1 allows remote attackers to list the contents of an excluded folder via a modified URL containing the folder name...

CVE-2007-3967

CVE-2007-3967 describes a directory traversal in PHP Directory Lister (dirLIST) prior to 0.1.1. The flaw, triggered by a .. in the folder parameter of index.php, allows remote attackers to list contents of a parent directory. Documented references (NVD, Red Hat, CVE List, PRION, etc.) confirm the...