PT-2025-53844

Name of the Vulnerable Software and Affected Versions SohuTV CacheCloud versions up to 3.2.0 Description A security issue exists in SohuTV CacheCloud. The index function within the file src/main/java/com/sohu/cache/web/controller/AppDataMigrateController.java is susceptible to cross-site scriptin...

PT-2025-19925 · 74Cms · 74Cms

Name of the Vulnerable Software and Affected Versions: 74CMS versions up to 3.33.0 Description: A vulnerability was found in the function index of the file /index.php/index/download/index. The manipulation of the argument url leads to path traversal. The attack may be launched remotely. The explo...

PT-2023-29763 · Unknown · Wpn-Xm Serverstack

Name of the Vulnerable Software and Affected Versions: WPN-XM Serverstack version 0.8.6 Description: A local file inclusion issue has been found, allowing an unauthenticated user to perform a local file inclusion via the "/tools/webinterface/index.php?page" parameter by sending a GET request. Thi...

PT-2007-3321 · Xoops +1 · Virii Info +1

Name of the Vulnerable Software and Affected Versions: Xoops module Virii Info versions 1.10 and earlier Description: A remote file inclusion issue in the index.php file of the Virii Info module for Xoops allows remote attackers to execute arbitrary PHP code via a URL in the xoopsConfigroot path...

Microsoft IIS WebDAV SEARCH Method Arbitrary Directory Forced Listing

It is possible to retrieve the listing of the remote directories accessible via HTTP, rather than their index.html, using the Index Server service which provides WebDav capabilities to this server. This problem allows an attacker to gain more knowledge about the remote host, and may make him awar...