EUVD-2022-55977

WordPress Plugin amministrazione-aperta 3.7.3 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting insufficient input validation in the open parameter. Attackers can supply file paths through the open GET parameter in dispatcher.php ...

CVE-2022-50956

WordPress Plugin amministrazione-aperta 3.7.3 contains a local file read vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting insufficient input validation in the open parameter. Attackers can supply file paths through the open GET parameter in dispatcher.php ...

WordPress plugin amministrazione-aperta 路径遍历漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

WordPress Amministrazione Aperta 3.7.3 Arbitrary File Read

Exploit Title: WordPress Plugin amministrazione-aperta 3.7.3 - Local File Read - Unauthenticated Google Dork: inurl:/wp-content/plugins/amministrazione-aperta/ Date: 23-03-2022 Exploit Author: Hassan Khan Yusufzai - Splint3r7 Vendor Homepage: https://wordpress.org/plugins/amministrazione-aperta/...

WordPress amministrazione-aperta 3.7.3 Plugin - Local File Read - Unauthenticated Vulnerability

Exploit Title: WordPress Plugin amministrazione-aperta 3.7.3 - Local File Read - Unauthenticated Google Dork: inurl:/wp-content/plugins/amministrazione-aperta/ Exploit Author: Hassan Khan Yusufzai - Splint3r7 Vendor Homepage: https://wordpress.org/plugins/amministrazione-aperta/ Version: 3.7.3...

Cross site scripting

In Yii Framework 2.x before 2.0.14, remote attackers could obtain potentially sensitive information from exception messages, or exploit reflected XSS on the error handler page in non-debug mode. Related to base/ErrorHandler.php, log/Dispatcher.php, and views/errorHandler/exception.php...

CVE-2011-3712

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

UBUNTU-CVE-2011-3712

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

Information disclosure

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

CVE-2008-0521

Multiple directory traversal vulnerabilities in Bubbling Library 1.32 allow remote attackers to read arbitrary files via a .. dot dot in the uri parameter to dispatcher.php in 1 examples/dispatcher/framework/, 2 examples/dispatcher/, 3 examples/wizard/, and 4 PHP/, different vectors than...

bubbling library 1.32 dispatcher.php Remote File Disclosure Vulnerabilities

No description provided by source. bubbling library v1.32 Remote File Disclosure Vulnerabilities Download script : http://sourceforge.net/project/showfiles.php?groupid=192730 Author : Stack-Terrorist v40 Email : [email protected] Home : http://www.v4-team.com exploit : http://localhost/ script...

bubbling library 1.32 - uri Remote File Disclosure

bubbling library 1.32 - uri Remote File Disclosure bubbling library v1.32 Remote File Disclosure Vulnerabilities Download script : http://sourceforge.net/project/showfiles.php?groupid=192730 Author : Stack-Terrorist v40 Email : [email protected] Home : http://www.v4-team.com exploit :...