4 matches found
ASTPP 安全漏洞
ASTPP is a VoIP billing solution developed by Innextrix Technologies Pvt. Ltd. Version 4.0.1 of ASTPP contains a security vulnerability. This vulnerability stems from information leakage, and it could allow unverified attackers to download database backup files by predicting the file name pattern...
Invision Community 安全特征问题漏洞
Invision Community is a software for designing and developing mobile application UI from Invision, Inc. A security signature vulnerability exists in Invision Community, which originates in the product's mtrand function that enables brute-force attacks on uploaded files to predict file names. The...
SilverStripe Code Issues Vulnerabilities
SilverStripe is New Zealand SilverStripe company's set of open source programming framework and content management system CMS. The system has support for multiple languages , cross-platform and other features . SilverStripe 4.5 and previous versions of a security vulnerability . An attacker can...
JqueryUpload large file upload arbitrary file upload vulnerability-vulnerability warning-the black bar safety net
Guess the solutions to catalog, direct access to the default. aspx you may need to modify the parameter uploadid,the specific capture can be seen, can not make the undefined) 2. Test upload, the capture 3. Modify the Upload Directory can be arbitrarily specified 4. Guessing file name: the server...