eclime v1.1 (File Disclosure) Vulnerabilities

Exploit for php platform in category web applications ============================================= eclime v1.1 File Disclosure Vulnerabilities ============================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...

osCommerce file_manager.php Arbitrary PHP Code Injection

The version of osCommerce hosted on the remote web server allows a remote attacker to access the Admin filemanager utility without authentication. Further, this utility appears to allow arbitrary PHP code to be stored in files under the web server's document directory and then executed subject to...

CVE-2004-2021

The CVE-2004-2021 issue concerns osCommerce 2.2 and its File Manager (file_manager.php). Multiple connected sources (OpenVAS NASLs and PT-Security) describe a directory traversal vulnerability that lets an attacker include a .. in the filename parameter to read arbitrary files on the web server, ...

advisory13.txt

l0om - l0omatexcluded.org - www.excluded.org greets, while i was "warsearching" with google i suddenly have been on the admin interfaces of many oscommerce sites. i made a: allinurl:admin/filemanager.php for nomal you can only view your oscommerce directorys, but if you type in the following you...

oscommerce 2.2 file_manager.php file browsing

l0om - l0omatexcluded.org - www.excluded.org greets, while i was "warsearching" with google i suddenly have been on the admin interfaces of many oscommerce sites. i made a: allinurl:admin/filemanager.php for nomal you can only view your oscommerce directorys, but if you type in the following you...