Lucene search
K

732 matches found

0day.today
0day.today
added 2009/06/29 12:0 a.m.21 views

DM FileManager 3.9.4 Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ======================================================== DM FileManager 3.9.4 Remote File Inclusion Vulnerability ======================================================== + DM FileManager 3.9.4 Remote File Include Vulnerability + Author :...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/29 12:0 a.m.33 views

dm FileManager 3.9.4 - Remote File Inclusion

DM FileManager 3.9.4 Remote File Include Vulnerability + Author : Septemb0x + www.Cyber-Warrior.Org - Information Technology's World + Greetz : BARCOD3 And All Friends... + Dork : Yok Dork Mork :D + Download Script : http://uploaded.to/file/3z84ie + Product Site : http://www.dutchmonkey.com +...

7.4AI score
Exploits0
NVD
NVD
added 2009/06/09 7:30 p.m.20 views

CVE-2009-2025

admin/login.php in DM FileManager 3.9.2 allows remote attackers to bypass authentication and gain administrative access by setting the 1 USER, 2 GROUPID, 3 GROUP, and 4 USERID cookies to certain values...

7.5CVSS7.1AI score0.0261EPSS
Exploits0References3
Prion
Prion
added 2009/06/09 7:30 p.m.13 views

Authentication flaw

admin/login.php in DM FileManager 3.9.2 allows remote attackers to bypass authentication and gain administrative access by setting the 1 USER, 2 GROUPID, 3 GROUP, and 4 USERID cookies to certain values...

7.5CVSS7.7AI score0.0261EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2009/06/09 7:0 p.m.23 views

CVE-2009-2025

admin/login.php in DM FileManager 3.9.2 allows remote attackers to bypass authentication and gain administrative access by setting the 1 USER, 2 GROUPID, 3 GROUP, and 4 USERID cookies to certain values...

7.1AI score0.0261EPSS
Exploits0References3
CVE
CVE
added 2009/06/09 7:0 p.m.55 views

CVE-2009-2025

DM FileManager 3.9.2 is affected by an authentication bypass vulnerability where remote attackers can gain admin access by tampering cookies (USER, GROUPID, GROUP, USERID). The issue is triggered through admin/login.php and leads to partial confidentiality/integrity/availability impacts as per CV...

7.5CVSS7.3AI score0.0261EPSS
Exploits0References3Affected Software1
0day.today
0day.today
added 2009/06/08 12:0 a.m.33 views

DM FileManager 3.9.2 Insecure Cookie Handling Vulnerability

Exploit for unknown platform in category web applications =========================================================== DM FileManager 3.9.2 Insecure Cookie Handling Vulnerability =========================================================== DM FileManager 3.9.2 Insecure Cookie Handling Vuln Founder:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/06/08 12:0 a.m.33 views

DM FileManager 3.9.2 Insecure Cookie

DM FileManager 3.9.2 Insecure Cookie Handling Vuln Founder: ThE g0bL!N ------ Home: http:/www.4ckx.com/dz/ ---- Vendor:http://dutchmonkey.com Special Thx: Snakespc Note: Algerie 3-1 Egypt Exploit: ------ javascript:document.cookie="USER=user name ;path=/";...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/08 12:0 a.m.54 views

DM FileManager 3.9.2 - Insecure Cookie Handling

DM FileManager 3.9.2 Insecure Cookie Handling Vuln Founder: ThE g0bL!N ------ Home: http:/www.4ckx.com/dz/ ---- Vendor:http://dutchmonkey.com Special Thx: Snakespc Note: Algerie 3-1 Egypt Exploit: ------ javascript:document.cookie="USER=user name ;path=/";...

7.4AI score
Exploits0
NVD
NVD
added 2009/05/20 7:30 p.m.19 views

CVE-2009-1741

Multiple SQL injection vulnerabilities in login.php in DM FileManager 3.9.2, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 Username and 2 Password fields...

6.8CVSS8.5AI score0.01941EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/05/20 7:0 p.m.23 views

CVE-2009-1741

Multiple SQL injection vulnerabilities in login.php in DM FileManager 3.9.2, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 Username and 2 Password fields...

8.5AI score0.01941EPSS
Exploits1References4
CVE
CVE
added 2009/05/20 7:0 p.m.43 views

CVE-2009-1741

CVE-2009-1741 relates to DM FileManager 3.9.2, where login.php contains multiple SQL injection vulnerabilities when magic_quotes_gpc is disabled. Remote attackers can cause arbitrary SQL execution via the (1) Username and (2) Password fields. The NVD notes a CVSSv2 base score of 6.8 (MEDIUM). No ...

6.8CVSS8.8AI score0.01941EPSS
Exploits1References4Affected Software1
seebug.org
seebug.org
added 2009/05/20 12:0 a.m.13 views

DM FileManager 3.9.2 (Auth Bypass) SQL Injection Vulnerability

No description provided by source. -------------------------AllaH AkbaR------------------------------- dm-filemanager Auth Bypass Remote Sql Injection --------------------------------------------------------------------------- Discovered By: Snakespc ALGERIAN HaCkEr Mail: [email protected]...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/05/19 12:0 a.m.10 views

DM FileManager 3.9.2 - Authentication Bypass

DM FileManager 3.9.2 - Authentication Bypass -------------------------AllaH AkbaR------------------------------- dm-filemanager Auth Bypass Remote Sql Injection --------------------------------------------------------------------------- Discovered By: Snakespc ALGERIAN HaCkEr Mail:...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2009/05/19 12:0 a.m.22 views

DM FileManager 3.9.2 SQL Injection

-------------------------AllaH AkbaR------------------------------- dm-filemanager Auth Bypass Remote Sql Injection --------------------------------------------------------------------------- Discovered By: Snakespc ALGERIAN HaCkEr Mail: [email protected] Site:http://www.snakespc.com/sc/index.ph...

0.8AI score
Exploits0
0day.today
0day.today
added 2009/05/19 12:0 a.m.19 views

DM FileManager 3.9.2 (Auth Bypass) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================== DM FileManager 3.9.2 Auth Bypass SQL Injection Vulnerability ==============================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/05/19 12:0 a.m.25 views

DM FileManager 3.9.2 - Authentication Bypass

-------------------------AllaH AkbaR------------------------------- dm-filemanager Auth Bypass Remote Sql Injection --------------------------------------------------------------------------- Discovered By: Snakespc ALGERIAN HaCkEr Mail: [email protected] Site:http://www.snakespc.com/sc/index.ph...

7.4AI score
Exploits0
NVD
NVD
added 2009/04/10 10:0 p.m.14 views

CVE-2008-6685

Unspecified vulnerability in Frontend Filemanager airfilemanager 0.6.1 and earlier extension for TYPO3 allows remote attackers to execute arbitrary commands via unknown vectors...

7.5CVSS7.7AI score0.01806EPSS
Exploits0References3
Cvelist
Cvelist
added 2009/04/10 3:0 p.m.23 views

CVE-2008-6685

Unspecified vulnerability in Frontend Filemanager airfilemanager 0.6.1 and earlier extension for TYPO3 allows remote attackers to execute arbitrary commands via unknown vectors...

7.7AI score0.01806EPSS
Exploits0References3
CVE
CVE
added 2009/04/10 3:0 p.m.42 views

CVE-2008-6685

The CVE-2008-6685 entry concerns Frontend Filemanager (air_filemanager) 0.6.1 and earlier TYPO3 extension. It describes an unspecified vulnerability that allows remote attackers to execute arbitrary commands via unknown vectors. The available sources confirm the affected software and the remote c...

7.5CVSS7.9AI score0.01806EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder