4 matches found
WCPS 4.3.1 Cross Site Scripting
Multiple XSS in cms WCPS v4.3.1 AUTHOR : Manas58 HOME : http://www.1923turk.biz http://xxxx/gzstat.php?id=1&nma=news&categoria=alert'xss' gzstat.php?id=1&nma=news&categoria=alert'xss' http://xxxxxxx/xxxxxxx/dload.php?ids=%3Cscript%3Ealert%3C/script%3E Gamoscu - Baybora - Delibey - Tiamo - Psiko -...
Path traversal
Absolute path traversal vulnerability in dload.php in the mygallery 2.3 plugin for e107 allows remote attackers to obtain sensitive information via a full pathname in the file parameter. NOTE: some of these details are obtained from third party information...
CVE-2008-1702
Absolute path traversal vulnerability in dload.php in the mygallery 2.3 plugin for e107 allows remote attackers to obtain sensitive information via a full pathname in the file parameter. NOTE: some of these details are obtained from third party information...
e107 My_Gallery Plugin Arbitrary File Download Vulnerability
e107 MyGallery Plugin Arbitrary File Download Vulnerability Release Date: 2008-03-25 Critical: Moderately critical Impact: Exposure of system information, Exposure of sensitive information Where: From remote Solution Status: Unpatched Software: MyGallery v2.3 plugin for e107 and prior Link:...