5 matches found
Evolution 1.1 and Prior Remote Execution
Product: MODX Evolution Risk: Very High Severity: Critical Versions: =1.1 Vulnerability Type: Remote Code Execution Report Date: 2016-November-08 Fixed Date: 2016-November-12 Description The following components distributed with all versions of MODX Evolution and 0.9.x contain a vulnerability, th...
MODx Evogallery模块'uploadify.php'任意文件上传漏洞
Bugtraq ID:65646 MODx是一个开源的PHP应用框架,可以帮助使用者控制自己的网上内容。 MODx Evogallery模块'uploadify.php'不正确过滤用户提交的输入,允许远程攻击者利用漏洞提交恶意文件,并以WEB权限执行。 0 MODx Evogallery 用户可参考厂商的GIT库以获得补丁修复此漏洞: https://github.com/Mark-H/EvoGallery ?php $uploadfile="file.php"; $ch =...
MODx Evogallery Shell Upload
Author: TUNISIAN CYBER + Exploit Title: MODx Evogallery File Upload Vulnerability + Date: 18-02-2014 + Category: WebApp + Tested on: KaliLinux/Windows 7 Pro + Vendor: http://modx.com/extras/package/evogallery + Friendly Sites: na3il.com,th3-creative.com 1.OVERVIEW: MODx's module Evogallery...
MODx (Evogallery) File Upload Vulnerability
Exploit for php platform in category web applications + Author: TUNISIAN CYBER + Exploit Title: MODx Evogallery File Upload Vulnerability + Date: 18-02-2014 + Category: WebApp + Tested on: KaliLinux/Windows 7 Pro + Vendor: http://modx.com/extras/package/evogallery + Friendly Sites:...
MODx Evogallery Module - Uploadify.php Arbitrary File Upload
MODx Evogallery Module - Uploadify.php Arbitrary File Upload source: https://www.securityfocus.com/bid/65646/info MODx Evogallery module is prone to an arbitrary file upload vulnerability. An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in...