bloofoxCMS Cross-Site Request Forgery Vulnerability (CNVD-2021-43375)

bloofoxCMS is a free open source PHP + MySQL based Web content management system . A cross-site request forgery vulnerability exists in bloofoxCMS version 0.5.2.1. An attacker can exploit this vulnerability to edit the content of any file...

Hosting Directory Traversal madness...

Hosting Controller directory traversal /../ madness Date 03/14/2002 Some hosting providers mailed me and asked me to do a bit more researches about Hosting Controller, they said their clients' sites have been deleted mysteriously, and defacement still happens quite at large even though they have...