75 matches found
CVE-2024-11215
CVE-2024-11215 affects EasyPHP Webserver v14.1 and is an absolute path traversal vulnerability. The issue allows bypassing SecurityManager restrictions to retrieve arbitrary files by sending a request containing consecutive strings ‘/...%5c’. Related sources describe the vulnerability as a path t...
CVE-2024-11215 Path traversal vulnerability in EasyPHP
Absolute path traversal incorrect restriction of a path to a restricted directory vulnerability in the EasyPHP web server, affecting version 14.1. This vulnerability could allow remote users to bypass SecurityManager restrictions and retrieve any file stored on the server by setting only...
EasyPHP Webserver 路径遍历漏洞
EasyPHP Webserver is an EasyPHP open source platform for building development environments. A path traversal vulnerability exists in EasyPHP Webserver version 14.1, which stems from absolute path traversal in the web server...
PT-2024-16833
Name of the Vulnerable Software and Affected Versions EasyPHP version 14.1 Description The issue is an absolute path traversal vulnerability, which could allow remote users to bypass SecurityManager restrictions and retrieve any file stored on the server. This is achieved by setting consecutive...
CVE-2023-3767
An OS command injection vulnerability has been found on EasyPHP Webserver affecting version 14.1. This vulnerability could allow an attacker to get full access to the system by sending a specially crafted exploit to the /index.php?zone=settings parameter...
CVE-2023-3767
An OS command injection vulnerability has been found on EasyPHP Webserver affecting version 14.1. This vulnerability could allow an attacker to get full access to the system by sending a specially crafted exploit to the /index.php?zone=settings parameter...
Command injection
An OS command injection vulnerability has been found on EasyPHP Webserver affecting version 14.1. This vulnerability could allow an attacker to get full access to the system by sending a specially crafted exploit to the /index.php?zone=settings parameter...
EasyPHP Webserver OS Command Injection Vulnerability
EasyPHP Webserver is an EasyPHP open source platform that allows you to build a development environment. EasyPHP Webserver version 14.1 suffers from an operating system command injection vulnerability that stems from the presence of an operating system command injection vulnerability. An attacker...
CVE-2023-3767 OS command injection on EasyPHP Webserver
An OS command injection vulnerability has been found on EasyPHP Webserver affecting version 14.1. This vulnerability could allow an attacker to get full access to the system by sending a specially crafted exploit to the /index.php?zone=settings parameter...
CVE-2023-3767
CVE-2023-3767 affects EasyPHP Webserver v14.1. An OS command injection flaw exists in the /index.php?zone=settings handler that an attacker can exploit to gain full system access. The root cause is improper handling of the settings parameter allowing arbitrary command execution. Documented impact...
CVE-2023-3767 OS command injection on EasyPHP Webserver
An OS command injection vulnerability has been found on EasyPHP Webserver affecting version 14.1. This vulnerability could allow an attacker to get full access to the system by sending a specially crafted exploit to the /index.php?zone=settings parameter...
PT-2023-26066 · Unknown · Easyphp Webserver
Name of the Vulnerable Software and Affected Versions: EasyPHP Webserver version 14.1 Description: An OS command injection vulnerability has been found in EasyPHP Webserver. This issue could allow an attacker to gain full access to the system by sending a specially crafted exploit to the...
EasyPHP Webserver 14.1 Path Traversal / Remote Code Execution
Exploit Title: EasyPHP Webserver 14.1 - Multiple Vulnerabilities RCE and Path Traversal Discovery by: Rafael Pedrero Discovery Date: 2022-02-06 Vendor Homepage: https://www.easyphp.org/ Software Link : https://www.easyphp.org/ Tested Version: 14.1 Tested on: Windows 7 and 10 Vulnerability Type:...
EasyPHP Webserver 14.1 - Multiple Vulnerabilities (RCE and Path Traversal) Exploit
Exploit Title: EasyPHP Webserver 14.1 - Multiple Vulnerabilities RCE and Path Traversal Discovery by: Rafael Pedrero Discovery Date: 2022-02-06 Vendor Homepage: https://www.easyphp.org/ Software Link : https://www.easyphp.org/ Tested Version: 14.1 Tested on: Windows 7 and 10 Vulnerability Type:...
EasyPHP Webserver 14.1 - Multiple Vulnerabilities (RCE and Path Traversal)
Exploit Title: EasyPHP Webserver 14.1 - Multiple Vulnerabilities RCE and Path Traversal Discovery by: Rafael Pedrero Discovery Date: 2022-02-06 Vendor Homepage: https://www.easyphp.org/ Software Link : https://www.easyphp.org/ Tested Version: 14.1 Tested on: Windows 7 and 10 Vulnerability Type:...
EasyPHP Webserver 14.1b2 Privilege Escalation
Exploit Title: EasyPHP-Webserver Service - Privilege Escalation Date: date Exploit Author: Owais Mehtab, Tayeeb Rana Vendor Homepage: www.easyphp.org/ Software Link: http://www.easyphp.org/easyphp-webserver.php Version: 14.1b2 Tested on: Win7 Sp1 C:\Program Files...
EasyPHP Devserver Insecure File Permissions Vulnerability
EasyPHP Devserver is a server developed by NodeJS, its goal is to assist in debugging some front-end effects that require server support. An insecure file permission vulnerability exists in EasyPHP Devserver version 16.1.1, which can be exploited by a local attacker to gain access to globally...
EasyPHP Devserver 16.1.1 - Insecure File Permissions Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Title: EasyPHP Devserver Insecure File Permissions Privilege Escalation Application: EasyPHP Devserver Versions Affected: 16.1 Vendor URL: http://www.easyphp.org/ Discovered by: Ashiyane Digital Security Team Micle Tested on: Windows 10...
EasyPHP Devserver 16.1.1 - Insecure File Permissions Privilege Escalation
Title: EasyPHP Devserver Insecure File Permissions Privilege Escalation Application: EasyPHP Devserver Versions Affected: 16.1 Vendor URL: http://www.easyphp.org/ Discovered by: Ashiyane Digital Security Team Micle Tested on: Windows 10 Professional x86 Bugs: Insecure File Permissions Privilege...
EasyPHP Devserver 16.1.1 - Insecure File Permissions Privilege Escalation
EasyPHP Devserver 16.1.1 - Insecure File Permissions Privilege Escalation Title: EasyPHP Devserver Insecure File Permissions Privilege Escalation Application: EasyPHP Devserver Versions Affected: 16.1 Vendor URL: http://www.easyphp.org/ Discovered by: Ashiyane Digital Security Team Micle Tested o...