Lucene search
K

8 matches found

NVD
NVD
added 2017/08/09 9:29 p.m.18 views

CVE-2017-12756

Command inject in transfer from another server in extplorer 2.1.9 and prior allows attacker to inject command via the userfile0 parameter...

7.2CVSS7AI score0.01165EPSS
Exploits0References1
Prion
Prion
added 2017/08/09 9:29 p.m.13 views

Command injection

Command inject in transfer from another server in extplorer 2.1.9 and prior allows attacker to inject command via the userfile0 parameter...

6.5CVSS7AI score0.01165EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/08/09 9:0 p.m.21 views

CVE-2017-12756

Command inject in transfer from another server in extplorer 2.1.9 and prior allows attacker to inject command via the userfile0 parameter...

7AI score0.01165EPSS
Exploits0References1
CVE
CVE
added 2017/08/09 9:0 p.m.60 views

CVE-2017-12756

CVE-2017-12756 affects extplorer, specifically versions up to 2.1.9. The flaw is a command injection in the transfer workflow from another server, exploitable via the userfile[0] parameter, enabling an attacker to execute arbitrary commands on the affected system. Debian/DLA-1063-1 notes the fix ...

7.2CVSS7AI score0.01165EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2017/04/24 6:59 p.m.2 views

UBUNTU-CVE-2016-4313

Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote attackers to execute arbitrary files via a .. dot dot in an archive file...

7.8CVSS7.4AI score0.08679EPSS
Exploits5References3
Prion
Prion
added 2017/04/24 6:59 p.m.11 views

Directory traversal

Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote attackers to execute arbitrary files via a .. dot dot in an archive file...

6.8CVSS7.6AI score0.08679EPSS
Exploits5References5Affected Software1
Cvelist
Cvelist
added 2017/04/24 6:0 p.m.23 views

CVE-2016-4313

Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote attackers to execute arbitrary files via a .. dot dot in an archive file...

7.7AI score0.08679EPSS
Exploits5References5
CVE
CVE
added 2017/04/24 6:0 p.m.58 views

CVE-2016-4313

CVE-2016-4313 affects eXtplorer 2.1.9 (and earlier) in the unzip/extract feature, enabling directory traversal and arbitrary file writes via crafted archives containing "../". Affected component is the unzip/extract functionality; root cause is path traversal in archive extraction. Reported impac...

7.8CVSS7.7AI score0.08679EPSS
Exploits5References5Affected Software1
Rows per page
Query Builder