11 matches found
EUVD-2008-7014
Malware in sbrugna...
CVE-2008-7054
Multiple directory traversal vulnerabilities in ezContents 2.0.3 allow remote attackers to include and execute arbitrary local files via the 1 gsLanguage and 2 languagehome parameters to modules/diary/showdiary.php; 3 adminhome, 4 gsLanguage, and 5 languagehome parameters to...
ezContents 1.4.5 (index.php link) Remote File Disclosure Vulnerability
Exploit for unknown platform in category web applications ====================================================================== ezContents 1.4.5 index.php link Remote File Disclosure Vulnerability ======================================================================...
Remote Code Execution in ezContents
ezContents has been found to contain a vulnerability that would allow a remote attacker to cause the PHP script to include an external PHP file and execute its content. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright...
Remote Code Execution in ezContents
Remote Code Execution in ezContents "ezContents" from www.ezcontents.org allows to execute code. Example: Create the following file on your webserver: ----index.php---- ? system$cmd; ? ----------------- And then type in the following URL:...
CVE-2002-1083
Directory traversal vulnerabilities in ezContents 1.41 and earlier allow remote attackers to cause ezContents to 1 create directories using the Maintain Images:Add New:Create Subdirectory item, or 2 list directories using the Maintain Images file listing, via .. dot dot sequences...
CVE-2002-1084
The VerifyLogin function in ezContents 1.41 and earlier does not properly halt program execution if a user fails to log in properly, which allows remote attackers to modify and view restricted information via HTTP POST requests...
CVE-2002-1087
The scripts 1 createdir.php, 2 removedir.php and 3 uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request...
CVE-2002-1087
The scripts 1 createdir.php, 2 removedir.php and 3 uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request...
CVE-2002-1084
The VerifyLogin function in ezContents 1.41 and earlier does not properly halt program execution if a user fails to log in properly, which allows remote attackers to modify and view restricted information via HTTP POST requests...
CVE-2002-1082
The Image Upload capability for ezContents 1.40 and earlier allows remote attackers to cause ezContents to perform operations on local files as if they were uploaded...